A common misconception about SPF

SPF looks at the bounce address of an email when doing its check.  (The bounce address is also referred to as the Return-Path, the MAIL FROM address, the envelope address, and in some circles, the RFC5321.MailFrom address.)  When SPF does its check, it will look for an SPF record using the domain found in the bounce address. DMARC attempts to correlate the results of checking SPF and DKIM with the domain found in a message's From: header.  It's the domain of…
dmarcian
30 November 2015

How can SPF/DKIM pass, and yet DMARC fail?

DMARC introduces the concept of "Identifier Alignment" to the world of email.  The concept is needed as SPF and DKIM are stand-alone technologies capable of associating a domain with a piece of email. When a receiver uses SPF, the receiver looks at the domain found in the RFC5321.MailFrom to figure out where to look for an SPF record.  The RFC5321.MailFrom address is the entity that is passed along as part of the "MAIL FROM" command during the SMTP conversation.  To…
dmarcian
12 October 2015