On 7/6/12 3:24 PM, "Scott Kitterman" <[email protected]> wrote: >A related point is that DMARC isn't actually using SPF. It's taking an >SPF >record (which is meant to apply to Mail From) and applying it to From. >Whatever result you get from that is not an SPF result and should not >pretend >it is. It's a substantially more failure prone approach for reusing SPF >records than Sender ID was, although because of the way DMARC integrates >SPF >records and DKIM and think it's a very reasonable and useful approach as >long >as DMARC doesn't overreach. >
That's not quite right. SPF is still applied to the RFC5321.MailFrom. SPF is thus completely unchanged in a DMARC world. What DMARC adds is a later check to see if that address is the same as, or related to, the RFC5322.From domain, since that's what the user sees. Nobody is saying that the alignment check is an SPF result, nor does the document make such a claim. It's fairly clear, I think, that there's separation between the two. -MSK > _______________________________________________ dmarc-discuss mailing list [email protected] http://www.dmarc.org/mailman/listinfo/dmarc-discuss NOTE: Participating in this list means you agree to the DMARC Note Well terms (http://www.dmarc.org/note_well.html)
