Hello,
My mail is being journaled via dual-delivery for a secondary security analysis. Among other things, that system is intended to interpret the Authentication-Results header for the messages arrival at Zoho. Unfortunately, that system is having an issue parsing the Authentication-Results correctly because the header is missing a required semi-colon.
The specs for the header require a semi-colon before each result-info section. In the case of the Zoho headers, there is no semi-colon prior to the SPF result, preventing it from being separated correctly from the DKIM result.
Example:
Authentication-Results: mx.zoho.com;
dkim=pass
spf=pass (zoho.com: domain of _spf.google.com designates 209.85.192.169 as permitted sender) smtp.mailfrom=[redacted]@gmail.com;
This should be:
Authentication-Results: mx.zoho.com;
dkim=pass;
spf=pass (zoho.com: domain of _spf.google.com designates 209.85.192.169 as permitted sender) smtp.mailfrom=
[redacted]@gmail.com
;
The requirements of the header per the RFC are here: