> On Feb 9, 2017, at 9:47 AM, John Levine <jo...@taugh.com> wrote: > > In article <1573147.t2hcmj7...@skynet.simkin.ca> you write: >> Forwarding does not break DMARC. A DMARC pass requires that either SPF or >> DKIM >> pass, not both. > > If a domain only authenticates with SPF, not DKIM, and publishes a > DMARC policy, then forwarding will break DMARC. I don't think I've > seen this scenario; places that publish DMARC policies tend to use > DKIM.
I did an analysis for a client a few months ago and found that there were some major ISPs that would (apparently randomly) break DKIM, leading to DMARC failures on forwarding. I’ve also seen other major ISPs ignore said breaks if they believe the sending IPs are forwarders. laura -- Having an Email Crisis? 800 823-9674 Laura Atkins Word to the Wise la...@wordtothewise.com (650) 437-0741 Email Delivery Blog: http://wordtothewise.com/blog
_______________________________________________ mailop mailing list mailop@mailop.org https://chilli.nosignal.org/cgi-bin/mailman/listinfo/mailop