My deepest sympathies on email deliverability problems. That kind of thing falls into my Dayjob responsibilities, so I know those feels.
I noticed that dreamwidth.org doesn't have a DMARC entry yet. This is Yet Another Thing to say to mailers, "no, really, I'm me". It works along with SPF and DKIM, which are already set up.
Last month, Amazon SES added support to customize the MAIL FROM: address in the SMTP conversation. This is a big thing for SES customers, as it makes DMARC much easier to set up. Create an SPF record in the 'dreamwidth.org' domain, set it up right with -all at the end, and deliverability would increase a bit. Better yet for troubleshooting, gmail will put a helpful additional header in messages saying how well incoming email passes DMARC, SPF, and DKIM
One caveat I know from bitter experience. Setting a policy to enforcing will break mail-forwards. People who have gmail addresses but forward email off of gmail will generate bounces like, "Mail administrators at $domain have administratively prevented this email from delivering," which will break things. Great for platforms where nonrepudiation is more important than deliverabiity, not so great for platforms where deliverability is paramount.
no subject
I noticed that dreamwidth.org doesn't have a DMARC entry yet. This is Yet Another Thing to say to mailers, "no, really, I'm me". It works along with SPF and DKIM, which are already set up.
Last month, Amazon SES added support to customize the MAIL FROM: address in the SMTP conversation. This is a big thing for SES customers, as it makes DMARC much easier to set up. Create an SPF record in the 'dreamwidth.org' domain, set it up right with -all at the end, and deliverability would increase a bit. Better yet for troubleshooting, gmail will put a helpful additional header in messages saying how well incoming email passes DMARC, SPF, and DKIM
Pretty handy.
One caveat I know from bitter experience. Setting a policy to enforcing will break mail-forwards. People who have gmail addresses but forward email off of gmail will generate bounces like, "Mail administrators at $domain have administratively prevented this email from delivering," which will break things. Great for platforms where nonrepudiation is more important than deliverabiity, not so great for platforms where deliverability is paramount.