That's when it's required to be checked. Receivers are free to check it otherwise as well (and it's recommended in RFC 4408).
Scott K On Monday, March 25, 2013 07:44:46 PM Paul Midgen wrote: > no. iirc the helo identity is checked IFF there is no MAIL FROM identity. > > On Mar 25, 2013, at 6:17 PM, "Carl S. Gutekunst" <[email protected]> wrote: > >>> Question 3: the absence of a SPF resource record in DNS for a domain, > >>> would it mean SPF-mechanism-authentication fail in DMARC for all email > >>> sent from that domain?>> > >> 3. Yes...if your envelope-from domain has no SPF record, that is > >> considered an SPF-fail for DMARC purposes.> > > But if the HELO Identity has a valid SPF record...? Isn't that supposed to > > be checked before the MAIL FROM Identity? > > > > I'm trying to push for clarity on this one issue because it doesn't seem > > to be implemented consistently, and with DMARC it's starting to really > > matter. > > > > <csg> > > _______________________________________________ > > dmarc-discuss mailing list > > [email protected] > > http://www.dmarc.org/mailman/listinfo/dmarc-discuss > > > > NOTE: Participating in this list means you agree to the DMARC Note Well > > terms (http://www.dmarc.org/note_well.html) > _______________________________________________ > dmarc-discuss mailing list > [email protected] > http://www.dmarc.org/mailman/listinfo/dmarc-discuss > > NOTE: Participating in this list means you agree to the DMARC Note Well > terms (http://www.dmarc.org/note_well.html) _______________________________________________ dmarc-discuss mailing list [email protected] http://www.dmarc.org/mailman/listinfo/dmarc-discuss NOTE: Participating in this list means you agree to the DMARC Note Well terms (http://www.dmarc.org/note_well.html)
