On Jan 25, 2014, at 6:49 AM, "J. Gomez" <[email protected]> wrote: > And what about this additional bullet in that section of the FAQ: > > * Check plain-SPF before checking DMARC, and if SPF-result is pass then skip > DMARC processing.
Wasn't the case of spoofing via (envelope domain != from header domain), which passes SPF, one of the problems DMARC was specifically designed to address? Am I missing something? J _______________________________________________ dmarc-discuss mailing list [email protected] http://www.dmarc.org/mailman/listinfo/dmarc-discuss NOTE: Participating in this list means you agree to the DMARC Note Well terms (http://www.dmarc.org/note_well.html)
