>From: "Franck Martin" <[email protected]> >Sent: Wednesday, November 26, 2014 10:29:35 PM > >Therefore it is important to read >http://trac.tools.ietf.org/html/rfc7208#section-10.1.3 on how to setup SPF to >work with >bounces. > >I know (or have known) several large properties that did not have this setup. >Unfortunately, bounces are not very visible >and it is hard to stop sending >emails to an invalid address if you cannot receive bounces due to policy.
So let's see how this must work in bounces ( DSN ): Requirements: * For the domain, the RFC5321.EHLO/HELO domain is used if the RFC5321.MailFrom is null. * RFC5321.MailFrom must have a domain. * alignment must exits between RFC5321.MailFrom domain, SPF identifier domain and DKIM's d= value. So a DMARC compliant DSN must: * Have a RFC5321.MailFrom with domain * Must present a HELO/EHLO hostname aligned domain and/or DKIM sign with d= of the same domain. Considerations: * This can be tricky in strict mode. Probably we should define a new specific field to define how this should align. * Some MTAs, at least Postfix, by default generate bounces with "From: MAILER-DAEMON (Mail Delivery System)". Am I missing something ? Jose Borges Ferreira _______________________________________________ dmarc mailing list [email protected] https://www.ietf.org/mailman/listinfo/dmarc
