> On Apr 14, 2023, at 6:42 PM, Hector Santos
> <hsantos=40isdg....@dmarc.ietf.org> wrote:
>
> On 4/14/2023 7:31 PM, Dotzero wrote:
>> On Fri, Apr 14, 2023 at 5:55 PM Hector Santos
>> <hsantos=40isdg....@dmarc.ietf.org <mailto:40isdg....@dmarc.ietf.org>> wrote:
>>
>> Yes, it is simple DeMorgan’s Theorem where you use
>> short-circuiting logic.
>>
>> DMARC says that any FAIL calculated via SPF or DKIM is an
>> overall DMARC failure. In standard boolean logic is it an OR
>> condition:
>>
>> IF SPF FAILS or DKIM FAILS Then Reject.
>>
>>
>> You have it absolutely backwards.
>>
>> DMARC says if either (aligned) SPF validates or (aligned) DKIM validates, it
>> passes.
> I don't follow you, so NO
>
> a fail of either is a failure as a whole.
>
> That is how the major EPS of late are applying it - per specs.
Hector, you’re wrong on this one. Check out
https://datatracker.ietf.org/doc/html/rfc7489#section-6.6.2. How would you
interpret the following (follow link above for more context):
DMARC evaluation can only yield a "pass" result after one of the underlying
authentication mechanisms passes for an aligned identifier.
Neil
_______________________________________________
dmarc mailing list
dmarc@ietf.org
https://www.ietf.org/mailman/listinfo/dmarc
