[dmarc-discuss] SPF failed?

Maarten Oelering maarten at postmastery.net
Mon Jun 11 03:51:04 PDT 2012


This alignment is specific to DMARC. It does not affect reputation that providers may track using regular valided SPF domains.

Note that DMARC is meant to destroy the deliverability of phishers, and not to improve the deliverability of commercial senders.

Maarten

On 11 jun. 2012, at 12:20, Or Weinberger wrote:

> Thanks Maarten, is this a specific requirement of DMRAC or does this mean that our email reputation is currently affected by this setting?
>  
> Thanks
>  
> From: Maarten Oelering [mailto:maarten at postmastery.net] 
> Sent: Monday, June 11, 2012 12:19 PM
> To: Or Weinberger
> Cc: dmarc-discuss at dmarc.org
> Subject: Re: [dmarc-discuss] SPF failed?
>  
> Your envelope sender (SPF) domain needs to end with 888poker.com to be aligned and validate in DMARC context.
>  
> See also the SPF examples in section B.1.1 of draft-dmarc-base-00-02.txt.
>  
> Maarten
>  
> On 11 jun. 2012, at 11:09, Or Weinberger wrote:
> 
> 
> Hi Michiel,
>  
> What do you mean it's not a part of bounce.cassavaengage.mkt3390.com
>  
> This is the current SPF record of bounce.cassavaengage.mkt3390.com:
>  
> "v=spf1 ip4:208.85.53.123 ip4:74.112.66.8 ip4:74.112.67.107 ip4:74.112.67.108 ip4:74.112.67.109 ip4:74.112.67.114 ip4:74.112.67.72 ip4:74.112.67.73 ip4:74.112.67.84 ip4:74.112.67.85 ip4:74.112.65.178 -all"
>  
> It contains all of our sending IPs, including 74.112.67.107 as mentioned below
>  
>  
> From: Maarten Oelering [mailto:maarten at postmastery.net] 
> Sent: Monday, June 11, 2012 12:07 PM
> To: dmarc-discuss at dmarc.org
> Cc: Or Weinberger
> Subject: Re: [dmarc-discuss] SPF failed?
>  
> Hi Or,
>  
> SPF alone, as checked on the envelope sender (return-path) validates. But DMARC requires that the envelope sender domain is aligned with the From: header domain. This is to prevent spoofing of the envelope sender.
>  
> Maarten Oelering
> Postmastery
>  
> On 11 jun. 2012, at 10:55, Or Weinberger wrote:
> 
> 
> 
> Hey everyone,
>  
> Trying to figure out why I'm seeing an SPF fail in the dmarc report:
>  
>   <record>           
>     <row>              
>       <source_ip>74.112.67.107</source_ip>          
>       <count>1327</count>             
>       <policy_evaluated> 
>         <disposition>none</disposition>   
>         <dkim>pass</dkim>              
>         <spf>fail</spf>        
>       </policy_evaluated>               
>     </row>            
>     <identifiers> 
>       <header_from>email.888poker.com</header_from>              
>     </identifiers>               
>     <auth_results>             
>       <dkim>          
>         <domain>email.888poker.com</domain>  
>         <result>pass</result>           
>       </dkim>        
>       <spf>              
>         <domain>bounce.cassavaengage.mkt3390.com</domain> 
>         <result>pass</result>           
>       </spf>            
>     </auth_results>           
>   </record>         
>  
> As you can see, under the <policy_evaluated> I'm getting <spf>fail</spf> but under the <auth_results> the spf seems to pass.
>  
> Thanks,
>  
> Or Weinberger
> Email Marketing Specialist 
>  
> Medinat Hayehudim 85A
> Herzliya Pituach, Israel
> t:   +972 (732) 888-695
> e:  or.weinberger at 888holdings.com
>  
> <image001.gif>
>  
> _______________________________________________
> dmarc-discuss mailing list
> dmarc-discuss at dmarc.org
> http://www.dmarc.org/mailman/listinfo/dmarc-discuss
> NOTE: Participating in this list means you agree to the DMARC Note Well terms (http://www.dmarc.org/note_well.html)

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://medusa.blackops.org/pipermail/dmarc-discuss/attachments/20120611/3403516a/attachment-0001.htm>


More information about the dmarc-discuss mailing list