I think you are confusing two things: One is what DMARC policy if any to apply to a message and the other is how to determine whether a message passes DMARC.
In our case, we want only to determine what if any DMARC policy will be applied, and the RFC says it's the policy of the From: domain if the From: domain has one and if not and the From: domain is a subdomain of an organizational domain, the organizational domain's policy if any applies. A recipient will then look at things like DKIM sigs and SPF and strict vs. relaxed alignment to determine if the message has a valid SPF or DKIM sig alligned with the From: domain, but we already know that we broke the incoming DKIM sig and it won't validate in any case or we wouldn't be applying DMARC mitigations. Thus, we need to know what if any DMARC policy will be applied in order to know whether to apply our mitigations. -- You received this bug notification because you are a member of Mailman Coders, which is subscribed to GNU Mailman. https://bugs.launchpad.net/bugs/1549420 Title: DMARC munging fails on subdomains that use parent domain policy To manage notifications about this bug go to: https://bugs.launchpad.net/mailman/+bug/1549420/+subscriptions _______________________________________________ Mailman-coders mailing list [email protected] https://mail.python.org/mailman/listinfo/mailman-coders
