Code: Select all
Authentication-Results: mail.abcxyz.com (amavisd-new);
dkim=fail (1024-bit key) reason="fail (body has been altered)"
header.d=amajorusbank.com
Code: Select all
X-Spam-Status: Yes, score=8.222 required=5.2 tests=[ALL_TRUSTED=-1,DKIM_INVALID=0.1, DKIM_SIGNED=0.1, DMARC_FAIL_REJECT=9,
HTML_FONT_LOW_CONTRAST=0.001, HTML_MESSAGE=0.001, T_HTML_ATTACH=0.01, T_SPF_HELO_TEMPERROR=0.01]
I know I can set a custom value for DMARC_FAIL_REJECT but as I searched around I ran into several seemingly-related posts (referring to the "body has been altered bit") and noted in my Zimbra system that the following is set:
Code: Select all
zimbra@mail:~$ zmlocalconfig | grep sanitizer
zimbra_use_owasp_html_sanitizer = true
I would've imagined that that body-altering checks would happen before HTML-sanitization...