[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: Q: How to set DMARC record for .debian.net?

Hi,


FYI:

I've sent a feedback to admin@db.debian.org
for support DMARC policy in userdir-ldap/ud-mailgate via dnsZoneEntry.

Here is the PoC patch:

https://salsa.debian.org/kenhys/userdir-ldap/-/commit/0ba7cc582a5a31a0f2f9eda17cf2516fd494591c

Regards,

2023年8月9日(水) 13:00 Kentaro Hayashi <kenhys@gmail.com>:
>
> Hi,
>
> DB Change Request is blocked like this:
>
> > Command is not understood. Halted - no changes committed
>
> As v=DMARC1 entry is not recognized, you can set DMARC for
> external record (_dmarc.foobar.xxxxxx.) and set IN CNAME as a workaround
> for debian.net.
>
> (I've found this way via ldapsearch via ldap://db.debian.org)
>
> I hope that change@db.debian.org accepts v=DMARC1 dnsZoneEntry in the future.
>
>
> Regards,
>
> 2023年8月6日(日) 17:00 Kentaro Hayashi <kenhys@gmail.com>:
> >
> > Hi,
> >
> > According to LDAP Gateway [1], It supports
> > to create a SPF txt record and DKIM pub key txt record
> > for dnsZoneEntry.
> >
> > I'm no sure but, it seems that DMARC txt record (v=DMARC1; ...) may be
> >  rejected to set.
> > Are there any guide to set DMARC for .debian.net correctly (If I'm wrong) or
> >  Can we support it?
> >
> > [1] https://db.debian.org/doc-mail.html
> >
> > --
> > Kentaro Hayashi <kenhys@gmail.com>
>
>
>
> --
> Kentaro Hayashi <kenhys@gmail.com>



-- 
Kentaro Hayashi <kenhys@gmail.com>
Reply to: