Hello John,
at SMTP level the server communicates EHLO mail.modernwebsite.pl and
ENVFROM:<>. There is no TXT record for mail.modernwebsite.pl so SPF
fails and cannot align.
The email itself contains “From: [email protected] (Mail
Delivery System)” without DKIM signature. ⇒ DMARC validation fails.
You can give it a try and send yourself a message to
“[email protected]”, the answer will be
<[email protected]> (expanded from <[email protected]>):
unknown user: "template"
Unfortunately I had another loop back in September 2018. I do not
remember the details. Given that this can happen again to somebody
else, it is better to have recommendation sending the message-specific
reports with FROM:<> or NOTIFY=NEVER, or at least some text
elaborating on the attack.
Regards
Дилян
----- Message from John Levine <[email protected]> ---------
Date: 26 May 2019 10:44:39 -0400
From: John Levine <[email protected]>
Subject: Re: [dmarc-ietf] Is there any recommendation to send DMARC
message-specific failure reports FROM:<> ?
To: [email protected]
Cc: [email protected]
In article
<[email protected]> you
write:
Hello John,
in case of modernwebsite.pl:
DNS TXT _dmarc.modernwebsite.pl is "v=DMARC1; p=reject; pct=100;
rua=mailto:[email protected];
ruf=mailto:[email protected]; aspf=s;adkim=s;"
Emails to [email protected] are answered with “Undelivered
Mail Returned to Sender”. The answers do not align to the DMARC
policy reject, so a new message-specific failure repot is sent.
Just out of curiosity, where do the reports come from? I see their
SPF record says "mx a".
_______________________________________________
dmarc mailing list
[email protected]
https://www.ietf.org/mailman/listinfo/dmarc
----- End message from John Levine <[email protected]> -----
_______________________________________________
dmarc mailing list
[email protected]
https://www.ietf.org/mailman/listinfo/dmarc
