Hi,
Can someone help me understand the DMARC_FAIL_REJECT rule? I have an
emailfrom aol.com that was quarantined as a result of this rule.
May 22 16:21:32.695 [23166] dbg: async: calling callback on key
askdns:TXT:_dmarc.aol.com
May 22 16:21:32.695 [23166] dbg: askdns: answer received, rcode NOERROR,
query IN/TXT/_dmarc.aol.com, answer has 1 records
May 22 16:21:32.695 [23166] dbg: askdns: domain "_dmarc.aol.com" listed
(__DMARC_POLICY_REJECT): v=DMARC1; p=reject; pct=100;
rua=mailto:d...@rua.agari.com; ruf=mailto:d...@ruf.agari.com;
May 22 16:21:32.696 [23166] dbg: dns: __DMARC_POLICY_REJECT lookup finished
I've put a copy of the headers here:
http://pastebin.com/HcbD2FJj
This is from rules posted to the list in Feb by Christian Laußat:
http://spamassassin.1065346.n5.nabble.com/Amazon-phishing-spam-td114429.html
It seems there are quite a few in the quarantine from this rule, so it's
worth re-evaulating.
Thanks,
Alex
