https://bz.apache.org/SpamAssassin/show_bug.cgi?id=7201
--- Comment #1 from Mark Martinec <[email protected]> --- > A whitelist_auth entry for [email protected] was entered. > However, the email is sent via mailchimp where the DKIM and SPF are > VERP-esque encoded entries for mcdlv.net. > > For example, the relevant headers/envelope for this email pass SPF and DKIM > but don't pass whitelist_auth for [email protected]. Is this a > bug? Is this something we can address? > Return-Path: > <bounce-mc.us6_14186571.60645-removed=ccc....@mail32.wdc01.mcdlv.net> > DKIM-Signature: v=1; a=rsa-sha1; c=relaxed/relaxed; s=k1; > d=mail32.wdc01.mcdlv.net; > From: <[email protected]> With DKIM the whitelist_auth checks for author-domain signature, not just any third-party signature. In this case the author domain is whitepaperwizard.com but the signing domain is mail32.wdc01.mcdlv.net. For DKIM-whitelisting third-party signatures you need to use: whitelist_from_dkim [email protected] mail32.wdc01.mcdlv.net (the first arg may be wildcarded if necessary). Don't know about SPF. -- You are receiving this mail because: You are the assignee for the bug.
