Uploaded image for project: 'Infrastructure'
  1. Infrastructure
  2. INFRA-14192

Senders with DMARC p=reject are being quarantined on the SA mailing list

    Details

    • Type: Project
    • Status: Waiting for user
    • Priority: Minor
    • Resolution: Unresolved
    • Fix Version/s: None
    • Component/s: Mailing Lists
    • Labels:
      None
    • Project:
      SpamAssassin

      Description

      Found this: https://blogs.apache.org/infra/entry/dmarc_filtering_on_lists_that

      Do we need to get that setting done on the SA list to allow senders with DMARC p=reject?

      Thanks,
      Dave

        Activity

        Hide
        cml Chris Lambertus added a comment -
        Quarantined how? Where? Anti-virus quarantining doesn't really match the pattern related to the issues with DMARC, so I'm not sure it relates. If you can point to specific quarantined messages and/or include the specifics of the quarantine notice, we can look into this further.
        Show
        cml Chris Lambertus added a comment - Quarantined how? Where? Anti-virus quarantining doesn't really match the pattern related to the issues with DMARC, so I'm not sure it relates. If you can point to specific quarantined messages and/or include the specifics of the quarantine notice, we can look into this further.
        Hide
        davej Dave Jones added a comment - Reporter
        To: [~cml]

        This was posted on the SpamAssassin mailling list:

        From: "Dianne Skoll" <dfs@roaringpenguin.com>
        To: users@spamassassin.apache.org
        Date: Friday 5/19/2017 1:30 PM US CDT

        Hi,

        Tons of list traffic keeps getting quarantined because of DMARC. For
        example, a recent message from David Jones <djones@ena.com>:

        DMARC policy for domain ena.com suggests Rejection as
        DMARC_POLICY_REJECT, but quarantined due to rule settings

        $ host -t txt _dmarc.ena.com
        _dmarc.ena.com descriptive text "v=DMARC1\; p=reject\; sp=reject\; rua=mailto:dmarc@ena.net\;"

        (In this instance, we've overridden the DMARC policy and converted it
        to quarantine instead of reject, so I was able to retrieve the email, but...)

        I'm pretty sure Mailman can do DMARC-munging. Can ezmlm do the equivalent
        of Mailman's "ALLOW_FROM_IS_LIST" feature?

        Regards,

        Dianne.

        I Googled a few things and found the article link in the original ticket description at the top that mentions DMARC filtering lists and a ezmlm patch that may need to be applied. Does the spamassassin.apache.org mailing list have that patch applied to it?

        https://blogs.apache.org/infra/entry/dmarc_filtering_on_lists_that

        Thanks,
        Dave
        Show
        davej Dave Jones added a comment - Reporter To: [~cml] This was posted on the SpamAssassin mailling list: From: "Dianne Skoll" < dfs@roaringpenguin.com > To: users@spamassassin.apache.org Date: Friday 5/19/2017 1:30 PM US CDT Hi, Tons of list traffic keeps getting quarantined because of DMARC. For example, a recent message from David Jones < djones@ena.com >: DMARC policy for domain ena.com suggests Rejection as DMARC_POLICY_REJECT, but quarantined due to rule settings $ host -t txt _dmarc.ena.com _dmarc.ena.com descriptive text "v=DMARC1\; p=reject\; sp=reject\; rua=mailto: dmarc@ena.net \;" (In this instance, we've overridden the DMARC policy and converted it to quarantine instead of reject, so I was able to retrieve the email, but...) I'm pretty sure Mailman can do DMARC-munging. Can ezmlm do the equivalent of Mailman's "ALLOW_FROM_IS_LIST" feature? Regards, Dianne. I Googled a few things and found the article link in the original ticket description at the top that mentions DMARC filtering lists and a ezmlm patch that may need to be applied. Does the spamassassin.apache.org mailing list have that patch applied to it? https://blogs.apache.org/infra/entry/dmarc_filtering_on_lists_that Thanks, Dave

          People

          • Assignee:
            Unassigned
            Reporter:
            davej Dave Jones
            Request participants:
            None
          • Votes:
            0 Vote for this issue
            Watchers:
            2 Start watching this issue

            Dates

            • Created:
              Updated: