DMARC access granted to nongnu.org; unable to change rejection policy

jon61 · May 7, 2025, 1:19pm

What is the name of the domain?

What is the error message?

DMARC access pass for nongnu.org

What is the issue you’re encountering

unable to configure DMARC through web interface

What steps have you taken to resolve the issue?

googling, configuring through the web admin

What are the steps to reproduce the issue?

im guessing using freebsd

Screenshot of the error

DarkDeviL · May 8, 2025, 9:49am

DMARC is looking at the “From:” header of the message.

As the “From:” header of the message has the domain name “unidef.net”, DMARC and it’s alignment will be validated according to “unidef.net”.

Since the SMTP MAIL FROM (Envelope From, Return-Path, etc.) that the SPF checks are done with, is on a completely different domain, “nongnu.org”, you CANNOT pass the SPF part of DMARC.

You’re always going to fail the SPF alignment, even if the SPF checks are passing, because the two domains aren’t equal.

Topic		Replies	Views
DMARC Report confusing - how can SPF and DKIM be aligned, but still fail DMARC? Previews & Betas	8	174	November 23, 2024
Email DNS Record Problems DNS & Network	7	3280	November 11, 2020
DMARC FAIL and SPF Records Can't Be Modified? Email Routing	3	936	July 26, 2023
DMARC and DNS Errors DNS & Network	5	2958	July 3, 2022
SFP & DKIM passing but DMARC not aligning using Wordpress DNS & Network	4	119	August 24, 2024