Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Enhance SPF details message #462

Open
1 task
adhilto opened this issue Oct 7, 2024 · 0 comments
Open
1 task

Enhance SPF details message #462

adhilto opened this issue Oct 7, 2024 · 0 comments
Labels
enhancement
Milestone
Backlog

Comments

@adhilto
Copy link
Collaborator

adhilto commented Oct 7, 2024

💡 Summary

Add more details to the "Details" message for SPF.

Motivation and context

The policy reads as:

An SPF policy SHALL be published for each domain that fails all non-approved senders.

A SPF policy such as v=spf1 include:_spf.google.com ~all would actually not meet the baseline because it "soft fails" (i.e., ~all instead of -all). But if you have an SPF policy like that, all ScubaGoggles says is x out y agency domain(s) found in violation: example.com, ...
If I were a user and I saw that message, I would likely be confused, "But I do have an SPF policy, why is it still failing in ScubaGoggles?" It would be nice if ScubaGoggles would tell me exactly why that domain failed the SPF requirements.

Implementation notes

Maybe the simplest way to do this would be something like this:

The following domains have not published SPF polices:
- example1
- example2

The following domains have published SPF policies but do not fail (i.e. "-all") all non-approved senders:
- example3
- example4

Acceptance criteria

  • Details message is more specific
@snarve snarve added this to the Backlog milestone Oct 15, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
enhancement
Projects
None yet
Milestone
Backlog
Development

No branches or pull requests
2 participants
@adhilto @snarve