[dmarc-discuss] RFC5322.From different from sender domain
avanishm at gmail.com
Thu Mar 8 22:26:17 PST 2012
Actual Sender domain is the one which is being use to send the mail and has done dkim signing for the mail.
As an example, This mail, I am sending from my yahoo mail account so yahoo.com is the actual sender who
is going to do DKIM signing of the message, but RFC 5322.FROM is my gmail account.
Since my yahoo.com has my registered and verified gmail account avanishm at gmail.com.
I can choose to select my gmail id as email FROM (RFC 5322.From). I can do the same with
my gmail account.
I believe many email provider has this facility where you can use your verified email address to send
mail from there account. This verified email address can be your work email id, school email
id or other web email provider id.
I am trying to evaluate how to handle such cases while implementing DMARC as RFC 5322.From
domain will be gmail.com while dkim domain (d=) will be yahoo.com.
From: Murray S. Kucherawy <msk at cloudmark.com>
To: "dmarc-discuss at dmarc.org" <dmarc-discuss at dmarc.org>
Sent: Thursday, March 8, 2012 8:53 PM
Subject: Re: [dmarc-discuss] RFC5322.From different from sender domain
What is the “actual sender domain”? It’s clear what RFC5322.From is, but I don’t know to which one you’re referring.
I believe Google Apps (for example) has a way to arrange to add signatures that have your domain name rather than (or in addition to) their own, which means you can get DKIM validation and domain alignment sufficient to satisfy DMARC evaluation. I don’t know about Yahoo! mail or others.
From:dmarc-discuss-bounces at blackops.org [mailto:dmarc-discuss-bounces at blackops.org] On Behalf Of Avanish Mishra
Sent: Thursday, March 08, 2012 5:37 PM
To: dmarc-discuss at dmarc.org
Subject: [dmarc-discuss] RFC5322.From different from sender domain
This might have been discuss before but i am not clear on DMARC recommendation for handling genuine use cases of RFC5322.FROM domain
different from actual sender domain?
Currently with most of big email provider like Yahoo Mail, Gmail and other i can register, authenticate and use external email id to send
mail. One of the possible use case is that any user can register and use <user at my-work-domain.com> as a alternate email id and use this email id
to send mail. This feature can be useful if i am travelling with internet access but no access to my-work-domain network
and want to send mail so that receiver can identify me with my work email id.
This mail will be delivered with RFC5322.FROM domain as "my-work-domain.com" and DKIM signing domain will yahoo.com/gmail.com
with the mail provider IP.
1. Should the DMARC record of "my-work-domain.com" should be fetch for DMARC processing
2. "my-work-domain.com" can have strict policy to reject mails; should the mail be rejected as this will
definitely fail Identifier Alignment.
is it possible to consider domain of sender (Mail header sender) in case RC5322.FROM domain is different?
dmarc-discuss mailing list
dmarc-discuss at dmarc.org
NOTE: Participating in this list means you agree to the DMARC Note Well terms (http://www.dmarc.org/note_well.html)
-------------- next part --------------
An HTML attachment was scrubbed...
More information about the dmarc-discuss