Open cmadamsgit opened 5 months ago
Please refer to RFC 7001. Specifically:
At the time of publication of this document, the following are published, domain-level email authentication methods in common use:
I would point out that at least iprev
, SPF helo
and AUTH
are all connection properties that are set before the first transaction is created. Therefore, a more correct implementation would be to collate the connection and transaction auth results when assembling the header.
Having looked into this a little more, I think A Pretty Good Solution looks like:
store_auth_results
on the connection or transaction, as is appropriateYeah, I think something like that is needed. I probably am not the person to do all that to be honest though... my particular use case happens to only be transaction-oriented things (so that's why my original patch is the way it is and works for me), and I don't think I'd have a good way to actually test a comprehensive patch. It's the work of going through all the plugins to understand them and make sure they're doing the right thing...
The authentication results from SPF/DKIM/etc. are part of a single message transaction, not the whole SMTP connection. Without this change, when multiple messages are received during a single SMTP connection, the SPF/DKIM/etc. results just keep getting appended to an Authentication-Results header.