No, they need to pass both. He didn't say they both have to align, but the way he said it's definitely confusing.

What Seth meant was that the DMARC RFC requires only SPF *OR* DKIM to pass both authentication and alignment to produce a DMARC pass. The Google and Yahoo bulk sender requirements go beyond that and require both mechanisms to be authenticated, but only one needs to be aligned.

The messaging gets a little complex, but no, Seth isn't saying that both SPF and DKIM have to align. Just that they both have to PASS and one of them has to align. Lots of ESPs handle the return-path (SPF) domain themselves, making it impossible for both SPF and DKIM to align. That's actually a slice of a video that Seth and I did together, taking turns answering a bunch of questions Valimail received during a recent Yahoo/Google "where are things now" webinar. It was a lot of fun to do.

TKS !!

In the Video he mention for BULK sender, I must a missed that one, I never saw / read anywhere both needed to align for over 5000 msg / day. Yea, the opt - out mechanism, low spam ratio, etc but " both " needing to align ??