Hello Am 07.05.20 um 10:29 schrieb Evan Booyens via mailop:
According to DMARC doc's, email should obey DMARC policy if either SPF or DKIM pass. This leads to a situation where a hijacked mailbox can send out spam which is accepted when SPF fails as DKIM passes. Any comments. Am I misunderstanding the DMARC policy ?It seems it would be better to apply DMARC if either DKIM or SPF fail, thus not weakening SPF.
When the account is hacked, why should SPF fail? Emails are send by your email servers.Both DKIM and SPF will be valid and DMARC does not help in such a case at all.
Kind regards, Christian Mack -- Christian Mack Universität Konstanz Kommunikations-, Informations-, Medienzentrum (KIM) Abteilung IT-Dienste Forschung und Lehre 78457 Konstanz +49 7531 88-4416
smime.p7s
Description: S/MIME Cryptographic Signature
_______________________________________________ mailop mailing list mailop@mailop.org https://chilli.nosignal.org/cgi-bin/mailman/listinfo/mailop