It appears that Emmanuel Fusté via Postfix-users <[email protected]> said: >In the general case (not null sender), HELO SPF validation does not >interfere with DMARC as DMARC only use the MAIL FROM identity. >There was historically a bug in some DMARC implementation witch evaluate >whatever SPF identity check that pass.
That's not a bug, that's how it's supposed to work, SPF uses the HELO if the return path is null. See section 2.4 of RFC 7208 and 4.1 of RFC 7489. We're nearly done with some updates to the DMARC spec and that is not changing. R's, John _______________________________________________ Postfix-users mailing list -- [email protected] To unsubscribe send an email to [email protected]
