On 1/25/2015 10:03 AM, Anne Bennett wrote:
Hector Santos <hsan...@isdg.net>:
"DMARC uses the result of SPF authentication of the MAIL FROM
identity."
Does that mean it gets return-path from the "Authentication-Result:"
header? or the "Return-Path:", "Sender:" headers?
It doesn't say how it gets the results, which IMHO is
appropriate, since this is implementation dependent - who are
we to say how the components of an e-mail filtering system
should communicate with each other internally?
or is about what SPF should report?
I definitely would not read the above sentence that way; I
raised this because I was trying to understand your objection
with respect to the headers.
I don't have a objection. The two headers are needed for maximum
upward and backward compatibility support. I was just making a note
that it is highly possible that a 4408 module may only exist for the
new dmarc module to work with. It will only see Received-SPF,
otherwise it is custom-made to support internal I/O meta-data or its
responsible for updating the 4408 module to possible do it all with
Auth-Res. In other words, a DMARC developer needs to be aware of
possible scenarios. It can not assume AUTH-RES is guaranteed to have
all the SPF information.
--
HLS
_______________________________________________
dmarc mailing list
dmarc@ietf.org
https://www.ietf.org/mailman/listinfo/dmarc
