Dear list members
According to DMARC doc's, email should obey DMARC policy if either SPF
or DKIM pass. This leads to a situation where a hijacked mailbox can
send out spam which is accepted when SPF fails as DKIM passes. Any
comments. Am I misunderstanding the DMARC policy ?
It seems it would be better to apply DMARC if either DKIM or SPF fail,
thus not weakening SPF.
Kind Regards
Evan
_______________________________________________
mailop mailing list
[email protected]
https://chilli.nosignal.org/cgi-bin/mailman/listinfo/mailop
