Re: [dmarc-discuss] SPF fail, DKIM success, Disposition none

A. Schulze via dmarc-discuss Tue, 07 Oct 2014 00:57:57 -0700


Dorai Ashok S A via dmarc-discuss:

In the last few weeks, I have started receiving DMARC reports fromgoogle.com with DKIM success for an unauthorized sender. Does thismean my signing keys are compromised (or) is there any otherexplanation in DMARC for this?

      <source_ip>67.205.101.106</source_ip>
      <count>4</count>
      <policy_evaluated>
        <disposition>none</disposition>
        <dkim>pass</dkim>
        <spf>fail</spf>
      </policy_evaluated>


maybe host.hoststreem.com[67.205.101.106] is a mail forwarder?
check your logs if you send 4 messages *to* this hosts.

Andreas

_______________________________________________
dmarc-discuss mailing list
[email protected]
http://www.dmarc.org/mailman/listinfo/dmarc-discuss

NOTE: Participating in this list means you agree to the DMARC Note Well terms 
(http://www.dmarc.org/note_well.html)

Re: [dmarc-discuss] SPF fail, DKIM success, Disposition none

Reply via email to