The article discusses a recent observation regarding Google's handling of email authentication messages, specifically how they interpret alignment related to DKIM and DMARC. It highlights that if DKIM aligns with the 5322.from address but a DMARC record is absent for the domain, Google displays a warning about domain misalignment. This occurs because Google relies on the Authentication-Results header for its alignment message. Without a DMARC=pass in the header, Google assumes misalignment despite DKIM alignment being intact. The author notes the need for further testing regarding SPF implications as well.
When aligning DKIM with the 5322.from address without a DMARC record, Google warns about misalignment, despite the domains matching.
Google's alignment message only reflects DMARC status; without a published record, it defaults to showing domain names instead of 'Pass'.
Collection
[
|
...
]