https://bz.apache.org/SpamAssassin/show_bug.cgi?id=7416
--- Comment #12 from Dave Jones <da...@apache.org> --- I am not going to go down to your level and argue this issue any further. A patch has already been made so I shouldn't even be responding to your comments at all but since you insulted my competence, this will be my last comment on this matter. https://blog.returnpath.com/why-passing-and-aligning-both-spf-and-dkim-is-key-to-email-deliverability/ If the DKIM signed domain and both the header-from and envelope-from align, then you have the maximum possible assurance that the email is both authentic (DKIM_VALID_AU) and authorized (SPF_PASS). This means you can safely add this to a whitelist_auth entry if you choose to trust that domain. SRS would allow the forwarding MTA to add DKIM signing for their new envelope-from to allow both SPF and DKIM alignment for perfect DMARC pass. I have done a lot of reading and research on DMARC as well as seen many DMARC reports for many domains. I understand how it works. I have never said this should be used as a ham or spam indicator, only that it could be used for whitelist_auth and possibly with meta rules. If you insist on insulting people on bugzilla like you do on the SA mailing list, I will make sure you are banned here too. You may offer your information in a polite and positive manner but as soon as you start using that tone, people tune you out and think you are a major jerk. You would be better off not writing anything at all. Dave -- You are receiving this mail because: You are the assignee for the bug.