On Thu, Jun 1, 2017 at 4:10 AM, Kurt Andersen (b) <[email protected]> wrote:
> On Thu, Jun 1, 2017 at 12:20 PM, Murray S. Kucherawy <[email protected]> > wrote: > >> Another way to look at it: A-R is meant to be a channel to record what >> authentication was done and what thing in the visible message got >> authenticated > > > So, for SPF which does not authenticate *anything* in the original > message, how is A-R relevant at all (by that intention)? > Consensus at the time was that the envelope was included in the definition of "message". Basically it's anything that's reasonably considered payload in RFC5321 or RFC5322. The IP address of the client is never part of SMTP or its payload, unless you count non-standard or optional stuff in Received fields. -MSK
_______________________________________________ dmarc mailing list [email protected] https://www.ietf.org/mailman/listinfo/dmarc
