To me it looks like the fastmail site sees mail purporting to be from your domain but coming from 212.83.129.132 which is not in your SPF record as an allowed sender.
What you could be seeing here is that a mailing list is configured to do traditional forwarding (which breaks with SPF enabled, sorry). I unfortunately see a lot of that. The other possibility is that what is getting reported is an attempt at a joejob or similar such as sending with a made up user name in hour domain but this report like most DMARC reports disregard local-parts (usernames) so it's hard to tell. There are ways to configure mailing lists to not trigger SPF/DMARC reports like this, but AFAIK it will need to be done on a per-list basis and for that reason is kind of a hassle for list admins. - Peter -- Peter N. M. Hansteen, member of the first RFC 1149 implementation team http://bsdly.blogspot.com/ http://www.bsdly.net/ http://www.nuug.no/ "Remember to set the evil bit on all malicious network traffic" delilah spamd[29949]: 85.152.224.147: disconnected after 42673 seconds. -- You received this mail because you are subscribed to [email protected] To unsubscribe, send a mail to: [email protected]
