20 Mar
2021
20 Mar
'21
11 p.m.
My understanding was that DMARC is merely a superset of DKIM+SPF along with some other policies. I have that set up on some of my domains. The weird part is that DKIM and SPF both passed, but DMARC was failing - I didn't realize it can happen but apparently it can: https://dmarcian.com/how-can-spfdkim-pass-and-yet-dmarc-fail/ We are in the process of introducing SRS for forwarded emails because we recently started seeing more SPF hard fail policy instances (e.g., columbia.edu).
This thread has drifted off topic anyway - sorry about that. The original topic was about user registration, which was orthogonal to this.