gregor, assuming you're on the sending side of the equation:
so long as your use of spf conforms with dmarc's expectations it will suffice. however, you will not benefit from dkim's assistance in mitigating known common spf failures, such as forwarding. so you really want to be certain you understand what that means for your mailstream before you publish a quarantine or reject policy. conforming use of spf, in the case of dmarc's default alignment model, means that your envelope and body-from addresses share the same organizational domain. for example, a passing spf result for a message with the following identities would pass dmarc validation: envelope-sender (5321.MailFrom): [email protected] body-from (5322.From): [email protected] if you're a receiver, unless you're being menaced by anti-dkim space monsters, you should be validating dkim inbound. it's right up there with helping old ladies cross the street. though i'm sure one of those statements will prove unpopular with someone, doing so is goodness nonetheless. hth, p From: Gregorius Gede Wiranarada <[email protected]> Date: Sunday, December 2, 2012 7:47 PM To: <[email protected]> Subject: [dmarc-discuss] only spf, no dkim > dear all, > > if i only use SPF and no DKIM, would DMARC works for me? thx > > regards, > gregor > _______________________________________________ dmarc-discuss mailing list > [email protected] http://www.dmarc.org/mailman/listinfo/dmarc-discuss > NOTE: Participating in this list means you agree to the DMARC Note Well terms > (http://www.dmarc.org/note_well.html)
_______________________________________________ dmarc-discuss mailing list [email protected] http://www.dmarc.org/mailman/listinfo/dmarc-discuss NOTE: Participating in this list means you agree to the DMARC Note Well terms (http://www.dmarc.org/note_well.html)
