[Rspamd-Users] SPF, DKIM and DMARC policy

Andy Kuhlen tamo at mandogo.de
Sat May 31 21:55:05 UTC 2025


Hello,

Lately I have been receiving spam mails that are currently being handled
with the standard configuration of SPF, DKIM and DMARC tests and are
also being properly moved to the spam folder. I find this less than
satisfactory and would like to reject mails where the check shows the
following results:

ARC-Authentication-Results: i=2;
	axe.mydomain.de;
	dkim=none ("invalid DKIM record") header.d=choibaidoithuong.com header.s=zoho header.b=RI8h0T1U;
	dmarc=fail reason="No valid SPF" header.from=choibaidoithuong.com (policy=none);
	arc=pass ("us.zohomail360.com:s=zohoarc:i=1");
	spf=none (axe.mydomain.de: domain of contact at choibaidoithuong.com has no SPF policy when checking 136.143.188.167) smtp.mailfrom=contact at choibaidoithuong.com

I have set up a reject policy for DMARC in the DNS settings for my domain. Now I would also like to set a reject policy for Rspamd. Does that make sense?

How should I handle mails where all checks fail? What is reasonable/practicable?

Unfortunately, the documentation of the SPF, DKIM and DMARC modules of Rspamd is not very informative in this regard. Does anyone have any advice / guidance?




More information about the Users mailing list