On Mon, 2017-06-19 at 08:26 +0200, PenguinWhispererThe . via dmarc-discuss wrote: > Am I interpreting this entry correctly? Thanks a lot in advance.
It's impossible to tell because you have obfuscated practically all of the relevant data. You need to include actual IPs and domain names for people to be able to help you properly. gapssmtp.com is used by Google for sending email via their cloud offering. Perhaps there is some cloud instance operated by the second domain name spoofing your domain name in the From address. Legitimate (but still misguided) applications for such spoofing can include third party ticketing systems, invoicing services etc. Without more information that's my guess. Ken. -- Ken O'Driscoll / We Monitor Email t: +353 1 254 9400 | w: www.wemonitoremail.com Need to understand deliverability? Now there's a book: www.wemonitoremail.com/book _______________________________________________ dmarc-discuss mailing list [email protected] http://www.dmarc.org/mailman/listinfo/dmarc-discuss NOTE: Participating in this list means you agree to the DMARC Note Well terms (http://www.dmarc.org/note_well.html)
