Hello,
I am seeing a lot of DMARC errors with emails coming from tencent.com, I am not
sure but based on the opendmarc errors I think these emails are forwarded via
qq.com and the From domain is replaced from @tencent.com to @qq.com (keeping
the user part intact).
The domain tencent.com has valid SPF+DMARC records, but the qq.com domain has
no TXT records whatsoever.
Anyone else seen this issue before? is opendmarc at fault?
-- SAMPLE
Received: from smtpbg.qq.com (smtpbg552.qq.com [183.3.226.181])
(using TLSv1.2 with cipher ECDHE-ECDSA-AES256-GCM-SHA384 (256/256 bits))
(No client certificate requested)
by my.server.com (Postfix) with ESMTPS id D4ACD5XZ51
for <em...@my.server.com>; Fri, 21 May 2021 11:14:12 +0000 (UTC)
Authentication-Results: my.server.com; dmarc=fail (p=none dis=none)
header.from=qq.com
Authentication-Results: my.server.com; spf=pass smtp.mailfrom=l...@tencent.com
Authentication-Results: my.server.com;
dkim=pass (1024-bit key; unprotected) header.d=tencent.com
header.i=@tencent.com header.a=rsa-sha256 header.s=s201512 header.b=Ucwje3sK
_______________________________________________
mailop mailing list
mailop@mailop.org
https://list.mailop.org/listinfo/mailop
