Received-SPF: fail (google.com: domain of email@example.com does not designate 18.104.22.168 as permitted sender) client-ip=22.214.171.124; Authentication-Results: mx.google.com; spf=fail (google.com: domain of firstname.lastname@example.org does not designate 126.96.36.199 as permitted sender) email@example.com; dmarc=fail (p=NONE dis=NONE) header.from=lucafrancesca.me
Based on this, Gmail let the (obviously fake) mail pass, Yahoo put it into Spam, Libero (Italian Provider) didn’t even receive it.
Even after deleting the user from Contacts, it still won’t go to Spam folder
So I ask myself…. Why the f**k use DKIM/SPF/DMARC if Gmail ignores them!
Think people, think…
Or maybe I should do the thinking!
Setting the policy to reject now is working fine!