Mailbox.org has a DMARC policy of "reject". So receivers that enforced DMARC and... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		upofadown on Feb 6, 2022 \| parent \| context \| favorite \| on: Ask HN: Best hosted alternative to Google Workspac... Mailbox.org has a DMARC policy of "reject". So receivers that enforced DMARC and did "domain alignment" would reject the email. Does that make what mailbox.org does with the "From:" address OK?

brightball on Feb 6, 2022 [–]

Not if they are still signing it with the private key for the domain.

If an email is sent with a From of @bob.com and DKIM signed using the private key for bob.com…it’s from bob.com.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact