On 09/05/2022 12:48, Matt Kinni wrote:
I have opendkim configured via 'smtpd_milters' to sign all outbound
mail, and my domain publishes a "quarantine" dmarc record to enforce
the consequences of this.
I recently discovered that MAILER-DAEMON messages generated by
postfix itself bypass this setup and do /not/ get signed, which
unfortunately results in legitimate DSNs being filtered into the
sender's spam/junk mail folder due to the dmarc policy (I confirmed
this with gmail).
On 09.05.22 20:59, Bernardo Reino wrote:
If you are using DMARC I assume you have also setup SPF correctly, so
that DMARC should pass even if your messages are not DKIM signed.
you'll get errors from people who forward their mail (especially to gmail)
setting envelope from to MAILER-DAEMON@(your domain).
I got some of those.
Maybe you can explain what you mean with "I confirmed this with
gmail", as it's generally very hard to confirm *anything* with gmail,
i.e. the reason why a certain mail will be rejected or land in junk.
--
Matus UHLAR - fantomas, [email protected] ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
Eagles may soar, but weasels don't get sucked into jet engines.
