On Wed 20/Mar/2024 23:11:20 +0100 Matthäus Wander wrote:
Alessandro Vesely wrote on 2024-03-20 15:42:
what is the result of DMARC on having, say
dkim=pass (testing key)
or
dkim=policy (512 byte key)
is that akin to SPF neutral, i.e. dmarc=fail?
dkim=pass results in dmarc=pass (if the domain is aligned). The comment in
brackets is for human eyes and does not change the DMARC result.
For t=y, DKIM says:
y This domain is testing DKIM. Verifiers MUST NOT treat messages
from Signers in testing mode differently from unsigned email,
even should the signature fail to verify. Verifiers MAY wish
to track testing mode results to assist the Signer.
So reporting dkim=pass for testing keys seems to be a violation.
dkim=policy is like spf=neutral, i.e. dmarc=fail.
Agreed. Should that be mentioned in DMARCbis?
Best
Ale
--
_______________________________________________
dmarc mailing list
[email protected]
https://www.ietf.org/mailman/listinfo/dmarc
