6.2.0

2026-06-10 04:29:47 +00:00 · 2019-02-24 23:08:45 -05:00
parent 17d9d3538d
commit 18fbe386aa
13 changed files with 556 additions and 138 deletions
@@ -8,7 +8,7 @@
  
  <meta name="viewport" content="width=device-width, initial-scale=1.0">
  
-  <title>Overview: module code &mdash; parsedmarc 6.1.8 documentation</title>
+  <title>Overview: module code &mdash; parsedmarc 6.2.0 documentation</title>
  

  
@@ -58,7 +58,7 @@
            
            
              <div class="version">
-                6.1.8
+                6.2.0
              </div>
            
          
@@ -8,7 +8,7 @@
  
  <meta name="viewport" content="width=device-width, initial-scale=1.0">
  
-  <title>parsedmarc &mdash; parsedmarc 6.1.8 documentation</title>
+  <title>parsedmarc &mdash; parsedmarc 6.2.0 documentation</title>
  

  
@@ -58,7 +58,7 @@
            
            
              <div class="version">
-                6.1.8
+                6.2.0
              </div>
            
          
@@ -185,7 +185,7 @@
 <span class="kn">from</span> <span class="nn">parsedmarc.utils</span> <span class="k">import</span> <span class="n">timestamp_to_human</span><span class="p">,</span> <span class="n">human_timestamp_to_datetime</span>
 <span class="kn">from</span> <span class="nn">parsedmarc.utils</span> <span class="k">import</span> <span class="n">parse_email</span>

-<span class="n">__version__</span> <span class="o">=</span> <span class="s2">&quot;6.1.8&quot;</span>
+<span class="n">__version__</span> <span class="o">=</span> <span class="s2">&quot;6.2.0&quot;</span>

 <span class="n">logging</span><span class="o">.</span><span class="n">basicConfig</span><span class="p">(</span>
    <span class="nb">format</span><span class="o">=</span><span class="s1">&#39;</span><span class="si">%(levelname)8s</span><span class="s1">:</span><span class="si">%(filename)s</span><span class="s1">:</span><span class="si">%(lineno)d</span><span class="s1">:&#39;</span>
@@ -230,7 +230,8 @@
    <span class="sd">&quot;&quot;&quot;Raised when an invalid DMARC forensic report is encountered&quot;&quot;&quot;</span></div>


-<span class="k">def</span> <span class="nf">_parse_report_record</span><span class="p">(</span><span class="n">record</span><span class="p">,</span> <span class="n">nameservers</span><span class="o">=</span><span class="kc">None</span><span class="p">,</span> <span class="n">dns_timeout</span><span class="o">=</span><span class="mf">2.0</span><span class="p">):</span>
+<span class="k">def</span> <span class="nf">_parse_report_record</span><span class="p">(</span><span class="n">record</span><span class="p">,</span> <span class="n">nameservers</span><span class="o">=</span><span class="kc">None</span><span class="p">,</span> <span class="n">dns_timeout</span><span class="o">=</span><span class="mf">2.0</span><span class="p">,</span>
+                         <span class="n">parallel</span><span class="o">=</span><span class="kc">False</span><span class="p">):</span>
    <span class="sd">&quot;&quot;&quot;</span>
 <span class="sd">    Converts a record from a DMARC aggregate report into a more consistent</span>
 <span class="sd">    format</span>
@@ -253,7 +254,8 @@
    <span class="n">new_record_source</span> <span class="o">=</span> <span class="n">get_ip_address_info</span><span class="p">(</span><span class="n">record</span><span class="p">[</span><span class="s2">&quot;row&quot;</span><span class="p">][</span><span class="s2">&quot;source_ip&quot;</span><span class="p">],</span>
                                            <span class="n">cache</span><span class="o">=</span><span class="n">IP_ADDRESS_CACHE</span><span class="p">,</span>
                                            <span class="n">nameservers</span><span class="o">=</span><span class="n">nameservers</span><span class="p">,</span>
-                                            <span class="n">timeout</span><span class="o">=</span><span class="n">dns_timeout</span><span class="p">)</span>
+                                            <span class="n">timeout</span><span class="o">=</span><span class="n">dns_timeout</span><span class="p">,</span>
+                                            <span class="n">parallel</span><span class="o">=</span><span class="n">parallel</span><span class="p">)</span>
    <span class="n">new_record</span><span class="p">[</span><span class="s2">&quot;source&quot;</span><span class="p">]</span> <span class="o">=</span> <span class="n">new_record_source</span>
    <span class="n">new_record</span><span class="p">[</span><span class="s2">&quot;count&quot;</span><span class="p">]</span> <span class="o">=</span> <span class="nb">int</span><span class="p">(</span><span class="n">record</span><span class="p">[</span><span class="s2">&quot;row&quot;</span><span class="p">][</span><span class="s2">&quot;count&quot;</span><span class="p">])</span>
    <span class="n">policy_evaluated</span> <span class="o">=</span> <span class="n">record</span><span class="p">[</span><span class="s2">&quot;row&quot;</span><span class="p">][</span><span class="s2">&quot;policy_evaluated&quot;</span><span class="p">]</span><span class="o">.</span><span class="n">copy</span><span class="p">()</span>
@@ -353,7 +355,8 @@
    <span class="k">return</span> <span class="n">new_record</span>


-<div class="viewcode-block" id="parse_aggregate_report_xml"><a class="viewcode-back" href="../index.html#parsedmarc.parse_aggregate_report_xml">[docs]</a><span class="k">def</span> <span class="nf">parse_aggregate_report_xml</span><span class="p">(</span><span class="n">xml</span><span class="p">,</span> <span class="n">nameservers</span><span class="o">=</span><span class="kc">None</span><span class="p">,</span> <span class="n">timeout</span><span class="o">=</span><span class="mf">2.0</span><span class="p">):</span>
+<div class="viewcode-block" id="parse_aggregate_report_xml"><a class="viewcode-back" href="../index.html#parsedmarc.parse_aggregate_report_xml">[docs]</a><span class="k">def</span> <span class="nf">parse_aggregate_report_xml</span><span class="p">(</span><span class="n">xml</span><span class="p">,</span> <span class="n">nameservers</span><span class="o">=</span><span class="kc">None</span><span class="p">,</span> <span class="n">timeout</span><span class="o">=</span><span class="mf">2.0</span><span class="p">,</span>
+                               <span class="n">parallel</span><span class="o">=</span><span class="kc">False</span><span class="p">):</span>
    <span class="sd">&quot;&quot;&quot;Parses a DMARC XML report string and returns a consistent OrderedDict</span>

 <span class="sd">    Args:</span>
@@ -452,13 +455,15 @@
            <span class="k">for</span> <span class="n">record</span> <span class="ow">in</span> <span class="n">report</span><span class="p">[</span><span class="s2">&quot;record&quot;</span><span class="p">]:</span>
                <span class="n">report_record</span> <span class="o">=</span> <span class="n">_parse_report_record</span><span class="p">(</span><span class="n">record</span><span class="p">,</span>
                                                     <span class="n">nameservers</span><span class="o">=</span><span class="n">nameservers</span><span class="p">,</span>
-                                                     <span class="n">dns_timeout</span><span class="o">=</span><span class="n">timeout</span><span class="p">)</span>
+                                                     <span class="n">dns_timeout</span><span class="o">=</span><span class="n">timeout</span><span class="p">,</span>
+                                                     <span class="n">parallel</span><span class="o">=</span><span class="n">parallel</span><span class="p">)</span>
                <span class="n">records</span><span class="o">.</span><span class="n">append</span><span class="p">(</span><span class="n">report_record</span><span class="p">)</span>

        <span class="k">else</span><span class="p">:</span>
            <span class="n">report_record</span> <span class="o">=</span> <span class="n">_parse_report_record</span><span class="p">(</span><span class="n">report</span><span class="p">[</span><span class="s2">&quot;record&quot;</span><span class="p">],</span>
                                                 <span class="n">nameservers</span><span class="o">=</span><span class="n">nameservers</span><span class="p">,</span>
-                                                 <span class="n">dns_timeout</span><span class="o">=</span><span class="n">timeout</span><span class="p">)</span>
+                                                 <span class="n">dns_timeout</span><span class="o">=</span><span class="n">timeout</span><span class="p">,</span>
+                                                 <span class="n">parallel</span><span class="o">=</span><span class="n">parallel</span><span class="p">)</span>
            <span class="n">records</span><span class="o">.</span><span class="n">append</span><span class="p">(</span><span class="n">report_record</span><span class="p">)</span>

        <span class="n">new_report</span><span class="p">[</span><span class="s2">&quot;records&quot;</span><span class="p">]</span> <span class="o">=</span> <span class="n">records</span>
@@ -524,7 +529,8 @@
    <span class="k">return</span> <span class="n">xml</span></div>


-<div class="viewcode-block" id="parse_aggregate_report_file"><a class="viewcode-back" href="../index.html#parsedmarc.parse_aggregate_report_file">[docs]</a><span class="k">def</span> <span class="nf">parse_aggregate_report_file</span><span class="p">(</span><span class="n">_input</span><span class="p">,</span> <span class="n">nameservers</span><span class="o">=</span><span class="kc">None</span><span class="p">,</span> <span class="n">dns_timeout</span><span class="o">=</span><span class="mf">2.0</span><span class="p">):</span>
+<div class="viewcode-block" id="parse_aggregate_report_file"><a class="viewcode-back" href="../index.html#parsedmarc.parse_aggregate_report_file">[docs]</a><span class="k">def</span> <span class="nf">parse_aggregate_report_file</span><span class="p">(</span><span class="n">_input</span><span class="p">,</span> <span class="n">nameservers</span><span class="o">=</span><span class="kc">None</span><span class="p">,</span> <span class="n">dns_timeout</span><span class="o">=</span><span class="mf">2.0</span><span class="p">,</span>
+                                <span class="n">parallel</span><span class="o">=</span><span class="kc">False</span><span class="p">):</span>
    <span class="sd">&quot;&quot;&quot;Parses a file at the given path, a file-like object. or bytes as a</span>
 <span class="sd">    aggregate DMARC report</span>

@@ -541,7 +547,8 @@

    <span class="k">return</span> <span class="n">parse_aggregate_report_xml</span><span class="p">(</span><span class="n">xml</span><span class="p">,</span>
                                      <span class="n">nameservers</span><span class="o">=</span><span class="n">nameservers</span><span class="p">,</span>
-                                      <span class="n">timeout</span><span class="o">=</span><span class="n">dns_timeout</span><span class="p">)</span></div>
+                                      <span class="n">timeout</span><span class="o">=</span><span class="n">dns_timeout</span><span class="p">,</span>
+                                      <span class="n">parallel</span><span class="o">=</span><span class="n">parallel</span><span class="p">)</span></div>


 <div class="viewcode-block" id="parsed_aggregate_reports_to_csv"><a class="viewcode-back" href="../index.html#parsedmarc.parsed_aggregate_reports_to_csv">[docs]</a><span class="k">def</span> <span class="nf">parsed_aggregate_reports_to_csv</span><span class="p">(</span><span class="n">reports</span><span class="p">):</span>
@@ -656,7 +663,8 @@

 <div class="viewcode-block" id="parse_forensic_report"><a class="viewcode-back" href="../index.html#parsedmarc.parse_forensic_report">[docs]</a><span class="k">def</span> <span class="nf">parse_forensic_report</span><span class="p">(</span><span class="n">feedback_report</span><span class="p">,</span> <span class="n">sample</span><span class="p">,</span> <span class="n">msg_date</span><span class="p">,</span>
                          <span class="n">nameservers</span><span class="o">=</span><span class="kc">None</span><span class="p">,</span> <span class="n">dns_timeout</span><span class="o">=</span><span class="mf">2.0</span><span class="p">,</span>
-                          <span class="n">strip_attachment_payloads</span><span class="o">=</span><span class="kc">False</span><span class="p">):</span>
+                          <span class="n">strip_attachment_payloads</span><span class="o">=</span><span class="kc">False</span><span class="p">,</span>
+                          <span class="n">parallel</span><span class="o">=</span><span class="kc">False</span><span class="p">):</span>
    <span class="sd">&quot;&quot;&quot;</span>
 <span class="sd">    Converts a DMARC forensic report and sample to a ``OrderedDict``</span>

@@ -700,7 +708,8 @@
        <span class="n">ip_address</span> <span class="o">=</span> <span class="n">parsed_report</span><span class="p">[</span><span class="s2">&quot;source_ip&quot;</span><span class="p">]</span>
        <span class="n">parsed_report_source</span> <span class="o">=</span> <span class="n">get_ip_address_info</span><span class="p">(</span><span class="n">ip_address</span><span class="p">,</span>
                                                   <span class="n">nameservers</span><span class="o">=</span><span class="n">nameservers</span><span class="p">,</span>
-                                                   <span class="n">timeout</span><span class="o">=</span><span class="n">dns_timeout</span><span class="p">)</span>
+                                                   <span class="n">timeout</span><span class="o">=</span><span class="n">dns_timeout</span><span class="p">,</span>
+                                                   <span class="n">parallel</span><span class="o">=</span><span class="n">parallel</span><span class="p">)</span>
        <span class="n">parsed_report</span><span class="p">[</span><span class="s2">&quot;source&quot;</span><span class="p">]</span> <span class="o">=</span> <span class="n">parsed_report_source</span>
        <span class="k">del</span> <span class="n">parsed_report</span><span class="p">[</span><span class="s2">&quot;source_ip&quot;</span><span class="p">]</span>

@@ -800,7 +809,7 @@


 <div class="viewcode-block" id="parse_report_email"><a class="viewcode-back" href="../index.html#parsedmarc.parse_report_email">[docs]</a><span class="k">def</span> <span class="nf">parse_report_email</span><span class="p">(</span><span class="n">input_</span><span class="p">,</span> <span class="n">nameservers</span><span class="o">=</span><span class="kc">None</span><span class="p">,</span> <span class="n">dns_timeout</span><span class="o">=</span><span class="mf">2.0</span><span class="p">,</span>
-                       <span class="n">strip_attachment_payloads</span><span class="o">=</span><span class="kc">False</span><span class="p">):</span>
+                       <span class="n">strip_attachment_payloads</span><span class="o">=</span><span class="kc">False</span><span class="p">,</span> <span class="n">parallel</span><span class="o">=</span><span class="kc">False</span><span class="p">):</span>
    <span class="sd">&quot;&quot;&quot;</span>
 <span class="sd">    Parses a DMARC report from an email</span>

@@ -871,7 +880,8 @@
                    <span class="n">aggregate_report</span> <span class="o">=</span> <span class="n">parse_aggregate_report_file</span><span class="p">(</span>
                        <span class="n">payload</span><span class="p">,</span>
                        <span class="n">nameservers</span><span class="o">=</span><span class="n">ns</span><span class="p">,</span>
-                        <span class="n">dns_timeout</span><span class="o">=</span><span class="n">dns_timeout</span><span class="p">)</span>
+                        <span class="n">dns_timeout</span><span class="o">=</span><span class="n">dns_timeout</span><span class="p">,</span>
+                        <span class="n">parallel</span><span class="o">=</span><span class="n">parallel</span><span class="p">)</span>
                    <span class="n">result</span> <span class="o">=</span> <span class="n">OrderedDict</span><span class="p">([(</span><span class="s2">&quot;report_type&quot;</span><span class="p">,</span> <span class="s2">&quot;aggregate&quot;</span><span class="p">),</span>
                                          <span class="p">(</span><span class="s2">&quot;report&quot;</span><span class="p">,</span> <span class="n">aggregate_report</span><span class="p">)])</span>
                    <span class="k">return</span> <span class="n">result</span>
@@ -898,7 +908,8 @@
                <span class="n">date</span><span class="p">,</span>
                <span class="n">nameservers</span><span class="o">=</span><span class="n">nameservers</span><span class="p">,</span>
                <span class="n">dns_timeout</span><span class="o">=</span><span class="n">dns_timeout</span><span class="p">,</span>
-                <span class="n">strip_attachment_payloads</span><span class="o">=</span><span class="n">strip_attachment_payloads</span><span class="p">)</span>
+                <span class="n">strip_attachment_payloads</span><span class="o">=</span><span class="n">strip_attachment_payloads</span><span class="p">,</span>
+                <span class="n">parallel</span><span class="o">=</span><span class="n">parallel</span><span class="p">)</span>
        <span class="k">except</span> <span class="n">InvalidForensicReport</span> <span class="k">as</span> <span class="n">e</span><span class="p">:</span>
            <span class="n">error</span> <span class="o">=</span> <span class="s1">&#39;Message with subject &quot;</span><span class="si">{0}</span><span class="s1">&quot; &#39;</span> \
                    <span class="s1">&#39;is not a valid &#39;</span> \
@@ -918,7 +929,7 @@


 <div class="viewcode-block" id="parse_report_file"><a class="viewcode-back" href="../index.html#parsedmarc.parse_report_file">[docs]</a><span class="k">def</span> <span class="nf">parse_report_file</span><span class="p">(</span><span class="n">input_</span><span class="p">,</span> <span class="n">nameservers</span><span class="o">=</span><span class="kc">None</span><span class="p">,</span> <span class="n">dns_timeout</span><span class="o">=</span><span class="mf">2.0</span><span class="p">,</span>
-                      <span class="n">strip_attachment_payloads</span><span class="o">=</span><span class="kc">False</span><span class="p">):</span>
+                      <span class="n">strip_attachment_payloads</span><span class="o">=</span><span class="kc">False</span><span class="p">,</span> <span class="n">parallel</span><span class="o">=</span><span class="kc">False</span><span class="p">):</span>
    <span class="sd">&quot;&quot;&quot;Parses a DMARC aggregate or forensic file at the given path, a</span>
 <span class="sd">    file-like object. or bytes</span>

@@ -943,7 +954,8 @@
    <span class="n">content</span> <span class="o">=</span> <span class="n">file_object</span><span class="o">.</span><span class="n">read</span><span class="p">()</span>
    <span class="k">try</span><span class="p">:</span>
        <span class="n">report</span> <span class="o">=</span> <span class="n">parse_aggregate_report_file</span><span class="p">(</span><span class="n">content</span><span class="p">,</span> <span class="n">nameservers</span><span class="o">=</span><span class="n">nameservers</span><span class="p">,</span>
-                                             <span class="n">dns_timeout</span><span class="o">=</span><span class="n">dns_timeout</span><span class="p">)</span>
+                                             <span class="n">dns_timeout</span><span class="o">=</span><span class="n">dns_timeout</span><span class="p">,</span>
+                                             <span class="n">parallel</span><span class="o">=</span><span class="n">parallel</span><span class="p">)</span>
        <span class="n">results</span> <span class="o">=</span> <span class="n">OrderedDict</span><span class="p">([(</span><span class="s2">&quot;report_type&quot;</span><span class="p">,</span> <span class="s2">&quot;aggregate&quot;</span><span class="p">),</span>
                               <span class="p">(</span><span class="s2">&quot;report&quot;</span><span class="p">,</span> <span class="n">report</span><span class="p">)])</span>
    <span class="k">except</span> <span class="n">InvalidAggregateReport</span><span class="p">:</span>
@@ -952,7 +964,8 @@
            <span class="n">results</span> <span class="o">=</span> <span class="n">parse_report_email</span><span class="p">(</span><span class="n">content</span><span class="p">,</span>
                                         <span class="n">nameservers</span><span class="o">=</span><span class="n">nameservers</span><span class="p">,</span>
                                         <span class="n">dns_timeout</span><span class="o">=</span><span class="n">dns_timeout</span><span class="p">,</span>
-                                         <span class="n">strip_attachment_payloads</span><span class="o">=</span><span class="n">sa</span><span class="p">)</span>
+                                         <span class="n">strip_attachment_payloads</span><span class="o">=</span><span class="n">sa</span><span class="p">,</span>
+                                         <span class="n">parallel</span><span class="o">=</span><span class="n">parallel</span><span class="p">)</span>
        <span class="k">except</span> <span class="n">InvalidDMARCReport</span><span class="p">:</span>
            <span class="k">raise</span> <span class="n">InvalidDMARCReport</span><span class="p">(</span><span class="s2">&quot;Not a valid aggregate or forensic &quot;</span>
                                     <span class="s2">&quot;report&quot;</span><span class="p">)</span>
@@ -8,7 +8,7 @@
  
  <meta name="viewport" content="width=device-width, initial-scale=1.0">
  
-  <title>parsedmarc.elastic &mdash; parsedmarc 6.1.8 documentation</title>
+  <title>parsedmarc.elastic &mdash; parsedmarc 6.2.0 documentation</title>
  

  
@@ -58,7 +58,7 @@
            
            
              <div class="version">
-                6.1.8
+                6.2.0
              </div>
            
          
@@ -251,6 +251,7 @@
 <span class="k">class</span> <span class="nc">_EmailAttachmentDoc</span><span class="p">(</span><span class="n">Document</span><span class="p">):</span>
    <span class="n">filename</span> <span class="o">=</span> <span class="n">Text</span><span class="p">()</span>
    <span class="n">content_type</span> <span class="o">=</span> <span class="n">Text</span><span class="p">()</span>
+    <span class="n">sha256</span> <span class="o">=</span> <span class="n">Text</span><span class="p">()</span>


 <span class="k">class</span> <span class="nc">_ForensicSampleDoc</span><span class="p">(</span><span class="n">InnerDoc</span><span class="p">):</span>
@@ -284,9 +285,9 @@
        <span class="bp">self</span><span class="o">.</span><span class="n">bcc</span><span class="o">.</span><span class="n">append</span><span class="p">(</span><span class="n">_EmailAddressDoc</span><span class="p">(</span><span class="n">display_name</span><span class="o">=</span><span class="n">display_name</span><span class="p">,</span>
                                         <span class="n">address</span><span class="o">=</span><span class="n">address</span><span class="p">))</span>

-    <span class="k">def</span> <span class="nf">add_attachment</span><span class="p">(</span><span class="bp">self</span><span class="p">,</span> <span class="n">filename</span><span class="p">,</span> <span class="n">content_type</span><span class="p">):</span>
+    <span class="k">def</span> <span class="nf">add_attachment</span><span class="p">(</span><span class="bp">self</span><span class="p">,</span> <span class="n">filename</span><span class="p">,</span> <span class="n">content_type</span><span class="p">,</span> <span class="n">sha256</span><span class="p">):</span>
        <span class="bp">self</span><span class="o">.</span><span class="n">attachments</span><span class="o">.</span><span class="n">append</span><span class="p">(</span><span class="n">_EmailAttachmentDoc</span><span class="p">(</span><span class="n">filename</span><span class="o">=</span><span class="n">filename</span><span class="p">,</span>
-                                <span class="n">content_type</span><span class="o">=</span><span class="n">content_type</span><span class="p">))</span>
+                                <span class="n">content_type</span><span class="o">=</span><span class="n">content_type</span><span class="p">,</span> <span class="n">sha256</span><span class="o">=</span><span class="n">sha256</span><span class="p">))</span>


 <span class="k">class</span> <span class="nc">_ForensicReportDoc</span><span class="p">(</span><span class="n">Document</span><span class="p">):</span>
@@ -616,7 +617,8 @@
                       <span class="n">address</span><span class="o">=</span><span class="n">address</span><span class="p">[</span><span class="s2">&quot;address&quot;</span><span class="p">])</span>
    <span class="k">for</span> <span class="n">attachment</span> <span class="ow">in</span> <span class="n">forensic_report</span><span class="p">[</span><span class="s2">&quot;parsed_sample&quot;</span><span class="p">][</span><span class="s2">&quot;attachments&quot;</span><span class="p">]:</span>
        <span class="n">sample</span><span class="o">.</span><span class="n">add_attachment</span><span class="p">(</span><span class="n">filename</span><span class="o">=</span><span class="n">attachment</span><span class="p">[</span><span class="s2">&quot;filename&quot;</span><span class="p">],</span>
-                              <span class="n">content_type</span><span class="o">=</span><span class="n">attachment</span><span class="p">[</span><span class="s2">&quot;mail_content_type&quot;</span><span class="p">])</span>
+                              <span class="n">content_type</span><span class="o">=</span><span class="n">attachment</span><span class="p">[</span><span class="s2">&quot;mail_content_type&quot;</span><span class="p">],</span>
+                              <span class="n">sha256</span><span class="o">=</span><span class="n">attachment</span><span class="p">[</span><span class="s2">&quot;sha256&quot;</span><span class="p">])</span>

    <span class="n">forensic_doc</span> <span class="o">=</span> <span class="n">_ForensicReportDoc</span><span class="p">(</span>
        <span class="n">feedback_type</span><span class="o">=</span><span class="n">forensic_report</span><span class="p">[</span><span class="s2">&quot;feedback_type&quot;</span><span class="p">],</span>
@@ -8,7 +8,7 @@
  
  <meta name="viewport" content="width=device-width, initial-scale=1.0">
  
-  <title>parsedmarc.splunk &mdash; parsedmarc 6.1.8 documentation</title>
+  <title>parsedmarc.splunk &mdash; parsedmarc 6.2.0 documentation</title>
  

  
@@ -58,7 +58,7 @@
            
            
              <div class="version">
-                6.1.8
+                6.2.0
              </div>
            
          
@@ -8,7 +8,7 @@
  
  <meta name="viewport" content="width=device-width, initial-scale=1.0">
  
-  <title>parsedmarc.utils &mdash; parsedmarc 6.1.8 documentation</title>
+  <title>parsedmarc.utils &mdash; parsedmarc 6.2.0 documentation</title>
  

  
@@ -58,7 +58,7 @@
            
            
              <div class="version">
-                6.1.8
+                6.2.0
              </div>
            
          
@@ -399,13 +399,14 @@
    <span class="k">return</span> <span class="n">human_timestamp_to_datetime</span><span class="p">(</span><span class="n">human_timestamp</span><span class="p">)</span><span class="o">.</span><span class="n">timestamp</span><span class="p">()</span></div>


-<div class="viewcode-block" id="get_ip_address_country"><a class="viewcode-back" href="../../index.html#parsedmarc.utils.get_ip_address_country">[docs]</a><span class="k">def</span> <span class="nf">get_ip_address_country</span><span class="p">(</span><span class="n">ip_address</span><span class="p">):</span>
+<div class="viewcode-block" id="get_ip_address_country"><a class="viewcode-back" href="../../index.html#parsedmarc.utils.get_ip_address_country">[docs]</a><span class="k">def</span> <span class="nf">get_ip_address_country</span><span class="p">(</span><span class="n">ip_address</span><span class="p">,</span> <span class="n">parallel</span><span class="o">=</span><span class="kc">False</span><span class="p">):</span>
    <span class="sd">&quot;&quot;&quot;</span>
 <span class="sd">    Uses the MaxMind Geolite2 Country database to return the ISO code for the</span>
 <span class="sd">    country associated with the given IPv4 or IPv6 address</span>

 <span class="sd">    Args:</span>
-<span class="sd">        ip_address (str): The IP address to query for</span>
+<span class="sd">        ip_address (str): The IP address to query for,</span>
+<span class="sd">        parallel (bool): parallel processing</span>

 <span class="sd">    Returns:</span>
 <span class="sd">        str: And ISO country code associated with the given IP address</span>
@@ -416,6 +417,9 @@
 <span class="sd">        Args:</span>
 <span class="sd">            location (str): Local location for the database file</span>
 <span class="sd">        &quot;&quot;&quot;</span>
+        <span class="k">if</span> <span class="n">parallel</span><span class="p">:</span>
+            <span class="n">logging</span><span class="o">.</span><span class="n">warning</span><span class="p">(</span><span class="s2">&quot;Cannot download GeoIP database in parallel mode&quot;</span><span class="p">)</span>
+            <span class="k">return</span>
        <span class="n">url</span> <span class="o">=</span> <span class="s2">&quot;https://geolite.maxmind.com/download/geoip/database/&quot;</span> \
              <span class="s2">&quot;GeoLite2-Country.tar.gz&quot;</span>
        <span class="c1"># Use a browser-like user agent string to bypass some proxy blocks</span>
@@ -435,11 +439,15 @@
            <span class="n">logger</span><span class="o">.</span><span class="n">warning</span><span class="p">(</span><span class="s2">&quot;Error downloading </span><span class="si">{0}</span><span class="s2">: </span><span class="si">{1}</span><span class="s2">&quot;</span><span class="o">.</span><span class="n">format</span><span class="p">(</span><span class="n">url</span><span class="p">,</span>
                                                               <span class="n">e</span><span class="o">.</span><span class="fm">__str__</span><span class="p">()))</span>

-    <span class="n">system_paths</span> <span class="o">=</span> <span class="p">[</span><span class="s2">&quot;/usr/local/share/GeoIP/GeoLite2-Country.mmdb&quot;</span><span class="p">,</span>
-                    <span class="s2">&quot;/usr/share/GeoIP/GeoLite2-Country.mmdb&quot;</span><span class="p">,</span>
-                    <span class="s2">&quot;/var/lib/GeoIP/GeoLite2-Country.mmdb&quot;</span><span class="p">,</span>
-                    <span class="s2">&quot;/var/local/lib/GeoIP/GeoLite2-Country.mmdb&quot;</span><span class="p">,</span>
-                    <span class="s2">&quot;C:</span><span class="se">\\</span><span class="s2">GeoIP</span><span class="se">\\</span><span class="s2">GeoLite2-Country.mmdb&quot;</span><span class="p">]</span>
+    <span class="n">system_paths</span> <span class="o">=</span> <span class="p">[</span>
+        <span class="s2">&quot;GeoLite2-Country.mmdb&quot;</span><span class="p">,</span>
+        <span class="s2">&quot;/usr/local/share/GeoIP/GeoLite2-Country.mmdb&quot;</span><span class="p">,</span>
+        <span class="s2">&quot;/usr/share/GeoIP/GeoLite2-Country.mmdb&quot;</span><span class="p">,</span>
+        <span class="s2">&quot;/var/lib/GeoIP/GeoLite2-Country.mmdb&quot;</span><span class="p">,</span>
+        <span class="s2">&quot;/var/local/lib/GeoIP/GeoLite2-Country.mmdb&quot;</span><span class="p">,</span>
+        <span class="s2">&quot;C:</span><span class="se">\\</span><span class="s2">GeoIP</span><span class="se">\\</span><span class="s2">GeoLite2-Country.mmdb&quot;</span>
+    <span class="p">]</span>
+
    <span class="n">db_path</span> <span class="o">=</span> <span class="kc">None</span>

    <span class="k">for</span> <span class="n">system_path</span> <span class="ow">in</span> <span class="n">system_paths</span><span class="p">:</span>
@@ -472,7 +480,8 @@
    <span class="k">return</span> <span class="n">country</span></div>


-<div class="viewcode-block" id="get_ip_address_info"><a class="viewcode-back" href="../../index.html#parsedmarc.utils.get_ip_address_info">[docs]</a><span class="k">def</span> <span class="nf">get_ip_address_info</span><span class="p">(</span><span class="n">ip_address</span><span class="p">,</span> <span class="n">cache</span><span class="o">=</span><span class="kc">None</span><span class="p">,</span> <span class="n">nameservers</span><span class="o">=</span><span class="kc">None</span><span class="p">,</span> <span class="n">timeout</span><span class="o">=</span><span class="mf">2.0</span><span class="p">):</span>
+<div class="viewcode-block" id="get_ip_address_info"><a class="viewcode-back" href="../../index.html#parsedmarc.utils.get_ip_address_info">[docs]</a><span class="k">def</span> <span class="nf">get_ip_address_info</span><span class="p">(</span><span class="n">ip_address</span><span class="p">,</span> <span class="n">cache</span><span class="o">=</span><span class="kc">None</span><span class="p">,</span> <span class="n">nameservers</span><span class="o">=</span><span class="kc">None</span><span class="p">,</span>
+                        <span class="n">timeout</span><span class="o">=</span><span class="mf">2.0</span><span class="p">,</span> <span class="n">parallel</span><span class="o">=</span><span class="kc">False</span><span class="p">):</span>
    <span class="sd">&quot;&quot;&quot;</span>
 <span class="sd">    Returns reverse DNS and country information for the given IP address</span>

@@ -482,6 +491,7 @@
 <span class="sd">        nameservers (list): A list of one or more nameservers to use</span>
 <span class="sd">        (Cloudflare&#39;s public DNS resolvers by default)</span>
 <span class="sd">        timeout (float): Sets the DNS timeout in seconds</span>
+<span class="sd">        parallel (bool): parallel processing</span>

 <span class="sd">    Returns:</span>
 <span class="sd">        OrderedDict: ``ip_address``, ``reverse_dns``</span>
@@ -497,7 +507,7 @@
    <span class="n">reverse_dns</span> <span class="o">=</span> <span class="n">get_reverse_dns</span><span class="p">(</span><span class="n">ip_address</span><span class="p">,</span>
                                  <span class="n">nameservers</span><span class="o">=</span><span class="n">nameservers</span><span class="p">,</span>
                                  <span class="n">timeout</span><span class="o">=</span><span class="n">timeout</span><span class="p">)</span>
-    <span class="n">country</span> <span class="o">=</span> <span class="n">get_ip_address_country</span><span class="p">(</span><span class="n">ip_address</span><span class="p">)</span>
+    <span class="n">country</span> <span class="o">=</span> <span class="n">get_ip_address_country</span><span class="p">(</span><span class="n">ip_address</span><span class="p">,</span> <span class="n">parallel</span><span class="o">=</span><span class="n">parallel</span><span class="p">)</span>
    <span class="n">info</span><span class="p">[</span><span class="s2">&quot;country&quot;</span><span class="p">]</span> <span class="o">=</span> <span class="n">country</span>
    <span class="n">info</span><span class="p">[</span><span class="s2">&quot;reverse_dns&quot;</span><span class="p">]</span> <span class="o">=</span> <span class="n">reverse_dns</span>
    <span class="n">info</span><span class="p">[</span><span class="s2">&quot;base_domain&quot;</span><span class="p">]</span> <span class="o">=</span> <span class="kc">None</span>
@@ -142,6 +142,8 @@ The full set of configuration options are:
    - ``debug`` - bool: Print debugging messages
    - ``silent`` - bool: Only print errors (Default: True)
    - ``log_file`` - str: Write log messages to a file at this path
+    - ``n_procs`` - int: Number of process to run in parallel when parsing in CLI mode (Default: 1)
+    - ``chunk_size`` - int: Number of files to give to each process when running in parallel. Setting this to a number larger than one can improve performance when processing thousands of files
 - ``imap``
    - ``host`` - str: The IMAP server hostname or IP address
    - ``port`` - int: The IMAP server port (Default: 993)
@@ -155,7 +157,10 @@ The full set of configuration options are:
    - ``delete`` - bool: Delete messages after processing them, instead of archiving them
    - ``test`` - bool: Do not move or delete messages
 - ``elasticsearch``
-    - ``hosts`` - str: A comma separated list of hostnames and ports or URLs (e.g. ``127.0.0.1:9200`` or https://user:secret@localhost:443)
+    - ``hosts`` - str: A comma separated list of hostnames and ports or URLs (e.g. ``127.0.0.1:9200`` or ``https://user:secret@localhost``)
+
+      .. note::
+         Special characters in the username or password must be `URL encoded`_.
    - ``ssl`` - bool: Use an encrypted SSL/TLS connection (Default: True)
    - ``cert_path`` - str: Path to a trusted certificates
    - ``index_suffix`` - str: A suffix to apply to the index names
@@ -197,20 +202,20 @@ The full set of configuration options are:

 .. warning::

-    ``save_aggregate`` and ``save_forensic`` are separate options because
-    you may not want to save forensic reports (also known as failure reports)
-    to your Elasticsearch instance, particularly if you are in a
-    highly-regulated industry that handles sensitive data, such as healthcare
-    or finance. If your legitimate outgoing email fails DMARC, it is possible
-    that email may appear later in a forensic report.
+   ``save_aggregate`` and ``save_forensic`` are separate options because
+   you may not want to save forensic reports (also known as failure reports)
+   to your Elasticsearch instance, particularly if you are in a
+   highly-regulated industry that handles sensitive data, such as healthcare
+   or finance. If your legitimate outgoing email fails DMARC, it is possible
+   that email may appear later in a forensic report.

-    Forensic reports contain the original headers of an email that failed a
-    DMARC check, and sometimes may also include the full message body,
-    depending on the policy of the reporting organization.
+   Forensic reports contain the original headers of an email that failed a
+   DMARC check, and sometimes may also include the full message body,
+   depending on the policy of the reporting organization.

-    Most reporting organizations do not send forensic reports of any kind for
-    privacy reasons. While aggregate DMARC reports are sent at least daily,
-    it is normal to receive very few forensic reports.
+   Most reporting organizations do not send forensic reports of any kind for
+   privacy reasons. While aggregate DMARC reports are sent at least daily,
+   it is normal to receive very few forensic reports.

   An alternative approach is to still collect forensic/failure/ruf reports
   in your DMARC inbox, but run ``parsedmarc`` with ``save_forensic = True``
@@ -719,17 +724,17 @@ Then, enable the service

 .. note::

-    You must also run the above commands whenever you edit
-    ``davmail.service``.
+  You must also run the above commands whenever you edit
+  ``davmail.service``.

 .. warning::

-    Always restart the service every time you upgrade to a new version of
-    ``davmail``:
+  Always restart the service every time you upgrade to a new version of
+  ``davmail``:

-   .. code-block:: bash
+  .. code-block:: bash

-       sudo service davmail restart
+   sudo service davmail restart

 To check the status of the service, run:

@@ -1085,12 +1090,12 @@ Then, enable the service

 .. warning::

-    Always restart the service every time you upgrade to a new version of
-    ``parsedmarc``:
+  Always restart the service every time you upgrade to a new version of
+  ``parsedmarc``:

-   .. code-block:: bash
+  .. code-block:: bash

-       sudo service parsedmarc restart
+   sudo service parsedmarc restart

 To check the status of the service, run:

@@ -1215,20 +1220,20 @@ indicators are also in alignment**.
 +-----------------------+-----------------------+-----------------------+
 |                       | **DKIM**              | **SPF**               |
 +-----------------------+-----------------------+-----------------------+
-| **Passing**           | The signature in the  | The mail server’s IP  |
+| **Passing**           | The signature in the  | The mail server's IP  |
 |                       | DKIM header is        | address is listed in  |
 |                       | validated using a     | the SPF record of the |
 |                       | public key that is    | domain in the SMTP    |
-|                       | published as a DNS    | envelope’s mail from  |
+|                       | published as a DNS    | envelope's mail from  |
 |                       | record of the domain  | header                |
 |                       | name specified in the |                       |
 |                       | signature             |                       |
 +-----------------------+-----------------------+-----------------------+
 | **Alignment**         | The signing domain    | The domain in the     |
-|                       | aligns with the       | SMTP envelope’s mail  |
+|                       | aligns with the       | SMTP envelope's mail  |
 |                       | domain in the         | from header aligns    |
-|                       | message’s from header | with the domain in    |
-|                       |                       | the message’s from    |
+|                       | message's from header | with the domain in    |
+|                       |                       | the message's from    |
 |                       |                       | header                |
 +-----------------------+-----------------------+-----------------------+

@@ -1236,7 +1241,7 @@ indicators are also in alignment**.
 What if a sender won't support DKIM/DMARC?
 ==========================================

-#. Some vendors don’t know about DMARC yet; ask about SPF and DKIM/email
+#. Some vendors don't know about DMARC yet; ask about SPF and DKIM/email
   authentication.
 #. Check if they can send through your email relays instead of theirs.
 #. Do they really need to spoof your domain? Why not use the display
@@ -1246,11 +1251,11 @@ What if a sender won't support DKIM/DMARC?
   separate SPF and DMARC records on ``news.example.com``, and set
   ``p=none`` in that DMARC record.

- .. warning ::
+.. warning ::

-     Do not alter the ``p`` or ``sp`` values of the DMARC record on the
-     Top-Level Domain (TLD) – that would leave you vulnerable to spoofing of
-     your TLD and/or any subdomain.
+  Do not alter the ``p`` or ``sp`` values of the DMARC record on the
+  Top-Level Domain (TLD) – that would leave you vulnerable to spoofing of
+  your TLD and/or any subdomain.

 What about mailing lists?
 =========================
@@ -1258,16 +1263,139 @@ What about mailing lists?
 When you deploy DMARC on your domain, you might find that messages relayed by
 mailing lists are failing DMARC, most likely because the mailing list is
 spoofing your from address, and modifying the subject, footer, or other part
-of the message.
+of the message, thereby breaking the DKIM signature.

-To fix this, the mailing list administrator must configure the list to replace
-the from address of the message (also known as munging) with the address of
-the mailing list, so they no longer spoof email addresses with domains
-protected by DMARC. Configuration steps for common mailing list platforms are
-listed below.
+Mailing list list best practices
+--------------------------------
+
+Ideally, a mailing list should forward messages without altering the headers
+or body content at all. `Joe Nelson`_ does a fantastic job of explaining exactly
+what mailing lists should and shouldn't do to be fully DMARC compliant.
+Rather than repeat his fine work, here's a summary:
+
+**Do**
+
+- Retain headers from the original message
+- Add `RFC 2369`_ List-Unsubscribe headers to outgoing messages, instead of
+  adding unsubscribe links to the body
+
+   ::
+
+    List-Unsubscribe: <https://list.example.com/unsubscribe-link>
+
+- Add `RFC 2919`_ List-Id headers instead of modifying the subject
+
+   ::
+
+    List-Id: Example Mailing List <list.example.com>
+
+**Do not**
+
+* Remove or modify any existing headers from the original message, including
+  From, Date, Subject, etc.
+* Add to or remove content from the message body, **including traditional
+  disclaimers and unsubscribe footers**
+
+In addition to complying with DMARC, this configuration ensures that Reply
+and Reply All actions work like they would with any email message. Reply
+replies to the message sender, and Reply All replies to the sender and the
+list.
+
+Configuration steps for common mailing list platforms are listed below.

 Mailman 2
----------
+~~~~~~~~~
+
+Navigate to General Settings, and configure the settings below
+
+============================ ==========
+**Setting**                  **Value**
+**subject_prefix**
+**from_is_list**             No
+**first_strip_reply_to**     No
+**reply_goes_to_list**       Poster
+**include_rfc2369_headers**  Yes
+**include_list_post_header** Yes
+**include_sender_header**    No
+============================ ==========
+
+Navigate to Non-digest options, and configure the settings below
+
+=================== ==========
+**Setting**         **Value**
+**msg_header**
+**msg_footer**
+**scrub_nondigest**  No
+=================== ==========
+
+
+Navigate to Privacy Options> Sending Filters, and configure the settings below
+
+====================================== ==========
+**Setting**                            **Value**
+**dmarc_moderation_action**            Accept
+**dmarc_quarentine_moderation_action** Yes
+**dmarc_none_moderation_action**       Yes
+====================================== ==========
+
+
+Mailman 3
+~~~~~~~~~
+
+Navigate to Settings> List Identity
+
+Make Subject prefix blank.
+
+Navigate to Settings> Alter Messages
+
+Configure the settings below
+
+====================================== ==========
+**Setting**                            **Value**
+**Convert html to plaintext**          No
+**Include RFC2369 headers**            Yes
+**Include the list post header**       Yes
+**Explicit reply-to address**
+**First strip replyo**                 No
+**Reply goes to list**                 No munging
+====================================== ==========
+
+Navigate to Settings> DMARC Mitigation
+
+Configure the settings below
+
+================================== ===============================
+**Setting**	                       **Value**
+**DMARC mitigation action**	       No DMARC mitigations
+**DMARC mitigate unconditionally** No
+================================== ===============================
+
+Create a blank footer template for your mailing list to remove the message
+footer. Unfortunately, the Postorius mailing list admin UI will not allow you
+to create an empty template, so you'll have to create one using the system's
+command line instead, for example:
+
+.. code-block:: bash
+
+   touch var/templates/lists/list.example.com/en/list:member:regular:footer
+
+Where ``list.example.com`` the list ID, and ``en`` is the language.
+
+Then restart mailman core.
+
+Workarounds
+-----------
+
+If a mailing list must go **against** best practices and
+modify the message (e.g. to add a required legal footer), the mailing
+list administrator must configure the list to replace the From address of the
+message (also known as munging) with the address of the mailing list, so they
+no longer spoof email addresses with domains protected by DMARC.
+
+Configuration steps for common mailing list platforms are listed below.
+
+Mailman 2
+~~~~~~~~~

 Navigate to Privacy Options> Sending Filters, and configure the settings below

@@ -1278,21 +1406,50 @@ Navigate to Privacy Options> Sending Filters, and configure the settings below
 **dmarc_none_moderation_action**       Yes
 ====================================== ==========

+.. note::
+
+  Message wrapping could be used as the DMARC mitigation action instead. In
+  that case, the original message is added as an attachment to the mailing
+  list message, but that could interfere with inbox searching, or mobile
+  clients.
+
+  On the other hand, replacing the From address might cause users to
+  accidentally reply to the entire list, when they only intended to reply to
+  the original sender.
+
+  Choose the option that best fits your community.
+
 Mailman 3
---------
+~~~~~~~~~

 In the DMARC Mitigations tab of the Settings page, configure the settings below

 ================================== ===============================
 **Setting**	                       **Value**
 **DMARC mitigation action**	       Replace From: with list address
-**DMARC Mitigate unconditionally** No
+**DMARC mitigate unconditionally** No
 ================================== ===============================

-LISTSERV
--------
+.. note::

-`LISTSERV 16.0-2017a`_ and higher will rewrite the From header. Some additional steps are needed for Linux hosts.
+  Message wrapping could be used as the DMARC mitigation action instead. In
+  that case, the original message is added as an attachment to the mailing
+  list message, but that could interfere with inbox searching, or mobile
+  clients.
+
+  On the other hand, replacing the From address might cause users to
+  accidentally reply to the entire list, when they only intended to reply to
+  the original sender.
+
+
+
+LISTSERV
+~~~~~~~~
+
+`LISTSERV 16.0-2017a`_ and higher will rewrite the From header for domains
+that enforce with a DMARC quarantine or reject policy.
+
+Some additional steps are needed for Linux hosts.

 API
 ===
@@ -1349,6 +1506,8 @@ Indices and tables

 .. _Cloudflare's public resolvers: https://1.1.1.1/

+.. _URL encoded: https://en.wikipedia.org/wiki/Percent-encoding#Percent-encoding_reserved_characters
+
 .. _Modern Auth/multi-factor authentication: http://davmail.sourceforge.net/faq.html

 .. _GeoLite2-Country.mmdb: https://geolite.maxmind.com/download/geoip/database/GeoLite2-Country.tar.gz
@@ -1369,4 +1528,10 @@ Indices and tables

 .. _XML files: https://github.com/domainaware/parsedmarc/tree/master/splunk

+.. _Joe Nelson: https://begriffs.com/posts/2018-09-18-dmarc-mailing-list.html
+
+.. _RFC 2369: https://tools.ietf.org/html/rfc2369
+
+.. _RFC 2919: https://tools.ietf.org/html/rfc2919
+
 .. _LISTSERV 16.0-2017a: https://www.lsoft.com/news/dmarc-issue1-2018.asp
@@ -1,6 +1,6 @@
 var DOCUMENTATION_OPTIONS = {
    URL_ROOT: document.getElementById("documentation_options").getAttribute('data-url_root'),
-    VERSION: '6.1.8',
+    VERSION: '6.2.0',
    LANGUAGE: 'None',
    COLLAPSE_INDEX: false,
    FILE_SUFFIX: '.html',
@@ -9,7 +9,7 @@
  
  <meta name="viewport" content="width=device-width, initial-scale=1.0">
  
-  <title>Index &mdash; parsedmarc 6.1.8 documentation</title>
+  <title>Index &mdash; parsedmarc 6.2.0 documentation</title>
  

  
@@ -59,7 +59,7 @@
            
            
              <div class="version">
-                6.1.8
+                6.2.0
              </div>
            
          
@@ -8,7 +8,7 @@
  
  <meta name="viewport" content="width=device-width, initial-scale=1.0">
  
-  <title>parsedmarc documentation - Open source DMARC report analyzer and visualizer &mdash; parsedmarc 6.1.8 documentation</title>
+  <title>parsedmarc documentation - Open source DMARC report analyzer and visualizer &mdash; parsedmarc 6.2.0 documentation</title>
  

  
@@ -58,7 +58,7 @@
            
            
              <div class="version">
-                6.1.8
+                6.2.0
              </div>
            
          
@@ -131,11 +131,19 @@
 <li><a class="reference internal" href="#dmarc-alignment-guide">DMARC Alignment Guide</a></li>
 <li><a class="reference internal" href="#what-if-a-sender-won-t-support-dkim-dmarc">What if a sender won’t support DKIM/DMARC?</a></li>
 <li><a class="reference internal" href="#what-about-mailing-lists">What about mailing lists?</a><ul>
+<li><a class="reference internal" href="#mailing-list-list-best-practices">Mailing list list best practices</a><ul>
 <li><a class="reference internal" href="#mailman-2">Mailman 2</a></li>
 <li><a class="reference internal" href="#mailman-3">Mailman 3</a></li>
+</ul>
+</li>
+<li><a class="reference internal" href="#workarounds">Workarounds</a><ul>
+<li><a class="reference internal" href="#id3">Mailman 2</a></li>
+<li><a class="reference internal" href="#id4">Mailman 3</a></li>
 <li><a class="reference internal" href="#listserv">LISTSERV</a></li>
 </ul>
 </li>
+</ul>
+</li>
 <li><a class="reference internal" href="#module-parsedmarc">API</a><ul>
 <li><a class="reference internal" href="#module-parsedmarc.elastic">parsedmarc.elastic</a></li>
 <li><a class="reference internal" href="#parsedmarc-splunk">parsedmarc.splunk</a><ul>
@@ -323,10 +331,10 @@ lookalike domain monitoring, check out <a class="reference external" href="https
 </pre></div>
 </div>
 <p>The full set of configuration options are:</p>
-<ul class="simple">
+<ul>
 <li><dl class="first docutils">
 <dt><code class="docutils literal notranslate"><span class="pre">general</span></code></dt>
-<dd><ul class="first last">
+<dd><ul class="first last simple">
 <li><code class="docutils literal notranslate"><span class="pre">save_aggregate</span></code> - bool: Save aggregate report data to the Elasticsearch and/or Splunk</li>
 <li><code class="docutils literal notranslate"><span class="pre">save_forensic</span></code> - bool: Save forensic report data to the Elasticsearch and/or Splunk</li>
 <li><code class="docutils literal notranslate"><span class="pre">strip_attachment_payloads</span></code> - bool: Remove attachment payloads from results</li>
@@ -336,13 +344,15 @@ lookalike domain monitoring, check out <a class="reference external" href="https
 <li><code class="docutils literal notranslate"><span class="pre">debug</span></code> - bool: Print debugging messages</li>
 <li><code class="docutils literal notranslate"><span class="pre">silent</span></code> - bool: Only print errors (Default: True)</li>
 <li><code class="docutils literal notranslate"><span class="pre">log_file</span></code> - str: Write log messages to a file at this path</li>
+<li><code class="docutils literal notranslate"><span class="pre">n_procs</span></code> - int: Number of process to run in parallel when parsing in CLI mode (Default: 1)</li>
+<li><code class="docutils literal notranslate"><span class="pre">chunk_size</span></code> - int: Number of files to give to each process when running in parallel. Setting this to a number larger than one can improve performance when processing thousands of files</li>
 </ul>
 </dd>
 </dl>
 </li>
 <li><dl class="first docutils">
 <dt><code class="docutils literal notranslate"><span class="pre">imap</span></code></dt>
-<dd><ul class="first last">
+<dd><ul class="first last simple">
 <li><code class="docutils literal notranslate"><span class="pre">host</span></code> - str: The IMAP server hostname or IP address</li>
 <li><code class="docutils literal notranslate"><span class="pre">port</span></code> - int: The IMAP server port (Default: 993)</li>
 <li><code class="docutils literal notranslate"><span class="pre">ssl</span></code> - bool: Use an encrypted SSL/TLS connection (Default: True)</li>
@@ -361,18 +371,27 @@ lookalike domain monitoring, check out <a class="reference external" href="https
 <li><dl class="first docutils">
 <dt><code class="docutils literal notranslate"><span class="pre">elasticsearch</span></code></dt>
 <dd><ul class="first last">
-<li><code class="docutils literal notranslate"><span class="pre">hosts</span></code> - str: A comma separated list of hostnames and ports or URLs (e.g. <code class="docutils literal notranslate"><span class="pre">127.0.0.1:9200</span></code> or <a class="reference external" href="https://user:secret&#64;localhost:443">https://user:secret&#64;localhost:443</a>)</li>
-<li><code class="docutils literal notranslate"><span class="pre">ssl</span></code> - bool: Use an encrypted SSL/TLS connection (Default: True)</li>
-<li><code class="docutils literal notranslate"><span class="pre">cert_path</span></code> - str: Path to a trusted certificates</li>
-<li><code class="docutils literal notranslate"><span class="pre">index_suffix</span></code> - str: A suffix to apply to the index names</li>
-<li><code class="docutils literal notranslate"><span class="pre">monthly_indexes</span></code> - bool: Use monthly indexes instead of daily indexes</li>
+<li><p class="first"><code class="docutils literal notranslate"><span class="pre">hosts</span></code> - str: A comma separated list of hostnames and ports or URLs (e.g. <code class="docutils literal notranslate"><span class="pre">127.0.0.1:9200</span></code> or <code class="docutils literal notranslate"><span class="pre">https://user:secret&#64;localhost</span></code>)</p>
+<div class="admonition note">
+<p class="first admonition-title">Note</p>
+<p class="last">Special characters in the username or password must be <a class="reference external" href="https://en.wikipedia.org/wiki/Percent-encoding#Percent-encoding_reserved_characters">URL encoded</a>.</p>
+</div>
+</li>
+<li><p class="first"><code class="docutils literal notranslate"><span class="pre">ssl</span></code> - bool: Use an encrypted SSL/TLS connection (Default: True)</p>
+</li>
+<li><p class="first"><code class="docutils literal notranslate"><span class="pre">cert_path</span></code> - str: Path to a trusted certificates</p>
+</li>
+<li><p class="first"><code class="docutils literal notranslate"><span class="pre">index_suffix</span></code> - str: A suffix to apply to the index names</p>
+</li>
+<li><p class="first"><code class="docutils literal notranslate"><span class="pre">monthly_indexes</span></code> - bool: Use monthly indexes instead of daily indexes</p>
+</li>
 </ul>
 </dd>
 </dl>
 </li>
 <li><dl class="first docutils">
 <dt><code class="docutils literal notranslate"><span class="pre">splunk_hec</span></code></dt>
-<dd><ul class="first last">
+<dd><ul class="first last simple">
 <li><code class="docutils literal notranslate"><span class="pre">url</span></code> - str: The URL of the Splunk HTTP Events Collector (HEC)</li>
 <li><code class="docutils literal notranslate"><span class="pre">token</span></code> - str: The HEC token</li>
 <li><code class="docutils literal notranslate"><span class="pre">index</span></code> - str: The Splunk index to use</li>
@@ -383,7 +402,7 @@ lookalike domain monitoring, check out <a class="reference external" href="https
 </li>
 <li><dl class="first docutils">
 <dt><code class="docutils literal notranslate"><span class="pre">kafka</span></code></dt>
-<dd><ul class="first last">
+<dd><ul class="first last simple">
 <li><code class="docutils literal notranslate"><span class="pre">hosts</span></code> - str: A comma separated list of Kafka hosts</li>
 <li><code class="docutils literal notranslate"><span class="pre">user</span></code> - str: The Kafka user</li>
 <li><code class="docutils literal notranslate"><span class="pre">passsword</span></code> - str: The Kafka password</li>
@@ -396,7 +415,7 @@ lookalike domain monitoring, check out <a class="reference external" href="https
 </li>
 <li><dl class="first docutils">
 <dt><code class="docutils literal notranslate"><span class="pre">smtp</span></code></dt>
-<dd><ul class="first last">
+<dd><ul class="first last simple">
 <li><code class="docutils literal notranslate"><span class="pre">host</span></code> - str: The SMTP hostname</li>
 <li><code class="docutils literal notranslate"><span class="pre">port</span></code> - int: The SMTP port (Default: 25)</li>
 <li><code class="docutils literal notranslate"><span class="pre">ssl</span></code> - bool: Require SSL/TLS instead of using STARTTLS</li>
@@ -423,8 +442,7 @@ requests to outside resolvers.</p>
 </div>
 <div class="admonition warning">
 <p class="first admonition-title">Warning</p>
-<blockquote>
-<div><p><code class="docutils literal notranslate"><span class="pre">save_aggregate</span></code> and <code class="docutils literal notranslate"><span class="pre">save_forensic</span></code> are separate options because
+<p><code class="docutils literal notranslate"><span class="pre">save_aggregate</span></code> and <code class="docutils literal notranslate"><span class="pre">save_forensic</span></code> are separate options because
 you may not want to save forensic reports (also known as failure reports)
 to your Elasticsearch instance, particularly if you are in a
 highly-regulated industry that handles sensitive data, such as healthcare
@@ -436,7 +454,6 @@ depending on the policy of the reporting organization.</p>
 <p>Most reporting organizations do not send forensic reports of any kind for
 privacy reasons. While aggregate DMARC reports are sent at least daily,
 it is normal to receive very few forensic reports.</p>
-</div></blockquote>
 <p class="last">An alternative approach is to still collect forensic/failure/ruf reports
 in your DMARC inbox, but run <code class="docutils literal notranslate"><span class="pre">parsedmarc</span></code> with <code class="docutils literal notranslate"><span class="pre">save_forensic</span> <span class="pre">=</span> <span class="pre">True</span></code>
 manually on a separate IMAP folder (using the  <code class="docutils literal notranslate"><span class="pre">reports_folder</span></code> option),
@@ -881,9 +898,8 @@ sudo service davmail restart
 </div>
 <div class="admonition warning">
 <p class="first admonition-title">Warning</p>
-<blockquote>
-<div>Always restart the service every time you upgrade to a new version of
-<code class="docutils literal notranslate"><span class="pre">davmail</span></code>:</div></blockquote>
+<p>Always restart the service every time you upgrade to a new version of
+<code class="docutils literal notranslate"><span class="pre">davmail</span></code>:</p>
 <div class="last highlight-bash notranslate"><div class="highlight"><pre><span></span>sudo service davmail restart
 </pre></div>
 </div>
@@ -1163,9 +1179,8 @@ sudo service parsedmarc restart
 </div>
 <div class="admonition warning">
 <p class="first admonition-title">Warning</p>
-<blockquote>
-<div>Always restart the service every time you upgrade to a new version of
-<code class="docutils literal notranslate"><span class="pre">parsedmarc</span></code>:</div></blockquote>
+<p>Always restart the service every time you upgrade to a new version of
+<code class="docutils literal notranslate"><span class="pre">parsedmarc</span></code>:</p>
 <div class="last highlight-bash notranslate"><div class="highlight"><pre><span></span>sudo service parsedmarc restart
 </pre></div>
 </div>
@@ -1326,28 +1341,210 @@ your domain (e.g. <code class="docutils literal notranslate"><span class="pre">n
 separate SPF and DMARC records on <code class="docutils literal notranslate"><span class="pre">news.example.com</span></code>, and set
 <code class="docutils literal notranslate"><span class="pre">p=none</span></code> in that DMARC record.</li>
 </ol>
-<blockquote>
-<div><div class="admonition warning">
+<div class="admonition warning">
 <p class="first admonition-title">Warning</p>
 <p class="last">Do not alter the <code class="docutils literal notranslate"><span class="pre">p</span></code> or <code class="docutils literal notranslate"><span class="pre">sp</span></code> values of the DMARC record on the
 Top-Level Domain (TLD) – that would leave you vulnerable to spoofing of
 your TLD and/or any subdomain.</p>
 </div>
-</div></blockquote>
 </div>
 <div class="section" id="what-about-mailing-lists">
 <h2>What about mailing lists?<a class="headerlink" href="#what-about-mailing-lists" title="Permalink to this headline">¶</a></h2>
 <p>When you deploy DMARC on your domain, you might find that messages relayed by
 mailing lists are failing DMARC, most likely because the mailing list is
 spoofing your from address, and modifying the subject, footer, or other part
-of the message.</p>
-<p>To fix this, the mailing list administrator must configure the list to replace
-the from address of the message (also known as munging) with the address of
-the mailing list, so they no longer spoof email addresses with domains
-protected by DMARC. Configuration steps for common mailing list platforms are
-listed below.</p>
+of the message, thereby breaking the DKIM signature.</p>
+<div class="section" id="mailing-list-list-best-practices">
+<h3>Mailing list list best practices<a class="headerlink" href="#mailing-list-list-best-practices" title="Permalink to this headline">¶</a></h3>
+<p>Ideally, a mailing list should forward messages without altering the headers
+or body content at all. <a class="reference external" href="https://begriffs.com/posts/2018-09-18-dmarc-mailing-list.html">Joe Nelson</a> does a fantastic job of explaining exactly
+what mailing lists should and shouldn’t do to be fully DMARC compliant.
+Rather than repeat his fine work, here’s a summary:</p>
+<p><strong>Do</strong></p>
+<ul>
+<li><p class="first">Retain headers from the original message</p>
+</li>
+<li><p class="first">Add <a class="reference external" href="https://tools.ietf.org/html/rfc2369">RFC 2369</a> List-Unsubscribe headers to outgoing messages, instead of
+adding unsubscribe links to the body</p>
+<blockquote>
+<div><div class="highlight-default notranslate"><div class="highlight"><pre><span></span><span class="n">List</span><span class="o">-</span><span class="n">Unsubscribe</span><span class="p">:</span> <span class="o">&lt;</span><span class="n">https</span><span class="p">:</span><span class="o">//</span><span class="nb">list</span><span class="o">.</span><span class="n">example</span><span class="o">.</span><span class="n">com</span><span class="o">/</span><span class="n">unsubscribe</span><span class="o">-</span><span class="n">link</span><span class="o">&gt;</span>
+</pre></div>
+</div>
+</div></blockquote>
+</li>
+<li><p class="first">Add <a class="reference external" href="https://tools.ietf.org/html/rfc2919">RFC 2919</a> List-Id headers instead of modifying the subject</p>
+<blockquote>
+<div><div class="highlight-default notranslate"><div class="highlight"><pre><span></span><span class="n">List</span><span class="o">-</span><span class="n">Id</span><span class="p">:</span> <span class="n">Example</span> <span class="n">Mailing</span> <span class="n">List</span> <span class="o">&lt;</span><span class="nb">list</span><span class="o">.</span><span class="n">example</span><span class="o">.</span><span class="n">com</span><span class="o">&gt;</span>
+</pre></div>
+</div>
+</div></blockquote>
+</li>
+</ul>
+<p><strong>Do not</strong></p>
+<ul class="simple">
+<li>Remove or modify any existing headers from the original message, including
+From, Date, Subject, etc.</li>
+<li>Add to or remove content from the message body, <strong>including traditional
+disclaimers and unsubscribe footers</strong></li>
+</ul>
+<p>In addition to complying with DMARC, this configuration ensures that Reply
+and Reply All actions work like they would with any email message. Reply
+replies to the message sender, and Reply All replies to the sender and the
+list.</p>
+<p>Configuration steps for common mailing list platforms are listed below.</p>
 <div class="section" id="mailman-2">
-<h3>Mailman 2<a class="headerlink" href="#mailman-2" title="Permalink to this headline">¶</a></h3>
+<h4>Mailman 2<a class="headerlink" href="#mailman-2" title="Permalink to this headline">¶</a></h4>
+<p>Navigate to General Settings, and configure the settings below</p>
+<table border="1" class="docutils">
+<colgroup>
+<col width="74%" />
+<col width="26%" />
+</colgroup>
+<tbody valign="top">
+<tr class="row-odd"><td><strong>Setting</strong></td>
+<td><strong>Value</strong></td>
+</tr>
+<tr class="row-even"><td><strong>subject_prefix</strong></td>
+<td>&#160;</td>
+</tr>
+<tr class="row-odd"><td><strong>from_is_list</strong></td>
+<td>No</td>
+</tr>
+<tr class="row-even"><td><strong>first_strip_reply_to</strong></td>
+<td>No</td>
+</tr>
+<tr class="row-odd"><td><strong>reply_goes_to_list</strong></td>
+<td>Poster</td>
+</tr>
+<tr class="row-even"><td><strong>include_rfc2369_headers</strong></td>
+<td>Yes</td>
+</tr>
+<tr class="row-odd"><td><strong>include_list_post_header</strong></td>
+<td>Yes</td>
+</tr>
+<tr class="row-even"><td><strong>include_sender_header</strong></td>
+<td>No</td>
+</tr>
+</tbody>
+</table>
+<p>Navigate to Non-digest options, and configure the settings below</p>
+<table border="1" class="docutils">
+<colgroup>
+<col width="66%" />
+<col width="34%" />
+</colgroup>
+<tbody valign="top">
+<tr class="row-odd"><td><strong>Setting</strong></td>
+<td><strong>Value</strong></td>
+</tr>
+<tr class="row-even"><td><strong>msg_header</strong></td>
+<td>&#160;</td>
+</tr>
+<tr class="row-odd"><td><strong>msg_footer</strong></td>
+<td>&#160;</td>
+</tr>
+<tr class="row-even"><td><strong>scrub_nondigest</strong></td>
+<td>No</td>
+</tr>
+</tbody>
+</table>
+<p>Navigate to Privacy Options&gt; Sending Filters, and configure the settings below</p>
+<table border="1" class="docutils">
+<colgroup>
+<col width="79%" />
+<col width="21%" />
+</colgroup>
+<tbody valign="top">
+<tr class="row-odd"><td><strong>Setting</strong></td>
+<td><strong>Value</strong></td>
+</tr>
+<tr class="row-even"><td><strong>dmarc_moderation_action</strong></td>
+<td>Accept</td>
+</tr>
+<tr class="row-odd"><td><strong>dmarc_quarentine_moderation_action</strong></td>
+<td>Yes</td>
+</tr>
+<tr class="row-even"><td><strong>dmarc_none_moderation_action</strong></td>
+<td>Yes</td>
+</tr>
+</tbody>
+</table>
+</div>
+<div class="section" id="mailman-3">
+<h4>Mailman 3<a class="headerlink" href="#mailman-3" title="Permalink to this headline">¶</a></h4>
+<p>Navigate to Settings&gt; List Identity</p>
+<p>Make Subject prefix blank.</p>
+<p>Navigate to Settings&gt; Alter Messages</p>
+<p>Configure the settings below</p>
+<table border="1" class="docutils">
+<colgroup>
+<col width="79%" />
+<col width="21%" />
+</colgroup>
+<tbody valign="top">
+<tr class="row-odd"><td><strong>Setting</strong></td>
+<td><strong>Value</strong></td>
+</tr>
+<tr class="row-even"><td><strong>Convert html to plaintext</strong></td>
+<td>No</td>
+</tr>
+<tr class="row-odd"><td><strong>Include RFC2369 headers</strong></td>
+<td>Yes</td>
+</tr>
+<tr class="row-even"><td><strong>Include the list post header</strong></td>
+<td>Yes</td>
+</tr>
+<tr class="row-odd"><td><strong>Explicit reply-to address</strong></td>
+<td>&#160;</td>
+</tr>
+<tr class="row-even"><td><strong>First strip replyo</strong></td>
+<td>No</td>
+</tr>
+<tr class="row-odd"><td><strong>Reply goes to list</strong></td>
+<td>No munging</td>
+</tr>
+</tbody>
+</table>
+<p>Navigate to Settings&gt; DMARC Mitigation</p>
+<p>Configure the settings below</p>
+<table border="1" class="docutils">
+<colgroup>
+<col width="52%" />
+<col width="48%" />
+</colgroup>
+<tbody valign="top">
+<tr class="row-odd"><td><strong>Setting</strong></td>
+<td><strong>Value</strong></td>
+</tr>
+<tr class="row-even"><td><strong>DMARC mitigation action</strong></td>
+<td>No DMARC mitigations</td>
+</tr>
+<tr class="row-odd"><td><strong>DMARC mitigate unconditionally</strong></td>
+<td>No</td>
+</tr>
+</tbody>
+</table>
+<p>Create a blank footer template for your mailing list to remove the message
+footer. Unfortunately, the Postorius mailing list admin UI will not allow you
+to create an empty template, so you’ll have to create one using the system’s
+command line instead, for example:</p>
+<div class="highlight-bash notranslate"><div class="highlight"><pre><span></span>touch var/templates/lists/list.example.com/en/list:member:regular:footer
+</pre></div>
+</div>
+<p>Where <code class="docutils literal notranslate"><span class="pre">list.example.com</span></code> the list ID, and <code class="docutils literal notranslate"><span class="pre">en</span></code> is the language.</p>
+<p>Then restart mailman core.</p>
+</div>
+</div>
+<div class="section" id="workarounds">
+<h3>Workarounds<a class="headerlink" href="#workarounds" title="Permalink to this headline">¶</a></h3>
+<p>If a mailing list must go <strong>against</strong> best practices and
+modify the message (e.g. to add a required legal footer), the mailing
+list administrator must configure the list to replace the From address of the
+message (also known as munging) with the address of the mailing list, so they
+no longer spoof email addresses with domains protected by DMARC.</p>
+<p>Configuration steps for common mailing list platforms are listed below.</p>
+<div class="section" id="id3">
+<h4>Mailman 2<a class="headerlink" href="#id3" title="Permalink to this headline">¶</a></h4>
 <p>Navigate to Privacy Options&gt; Sending Filters, and configure the settings below</p>
 <table border="1" class="docutils">
 <colgroup>
@@ -1369,9 +1566,20 @@ listed below.</p>
 </tr>
 </tbody>
 </table>
+<div class="admonition note">
+<p class="first admonition-title">Note</p>
+<p>Message wrapping could be used as the DMARC mitigation action instead. In
+that case, the original message is added as an attachment to the mailing
+list message, but that could interfere with inbox searching, or mobile
+clients.</p>
+<p>On the other hand, replacing the From address might cause users to
+accidentally reply to the entire list, when they only intended to reply to
+the original sender.</p>
+<p class="last">Choose the option that best fits your community.</p>
 </div>
-<div class="section" id="mailman-3">
-<h3>Mailman 3<a class="headerlink" href="#mailman-3" title="Permalink to this headline">¶</a></h3>
+</div>
+<div class="section" id="id4">
+<h4>Mailman 3<a class="headerlink" href="#id4" title="Permalink to this headline">¶</a></h4>
 <p>In the DMARC Mitigations tab of the Settings page, configure the settings below</p>
 <table border="1" class="docutils">
 <colgroup>
@@ -1385,15 +1593,28 @@ listed below.</p>
 <tr class="row-even"><td><strong>DMARC mitigation action</strong></td>
 <td>Replace From: with list address</td>
 </tr>
-<tr class="row-odd"><td><strong>DMARC Mitigate unconditionally</strong></td>
+<tr class="row-odd"><td><strong>DMARC mitigate unconditionally</strong></td>
 <td>No</td>
 </tr>
 </tbody>
 </table>
+<div class="admonition note">
+<p class="first admonition-title">Note</p>
+<p>Message wrapping could be used as the DMARC mitigation action instead. In
+that case, the original message is added as an attachment to the mailing
+list message, but that could interfere with inbox searching, or mobile
+clients.</p>
+<p class="last">On the other hand, replacing the From address might cause users to
+accidentally reply to the entire list, when they only intended to reply to
+the original sender.</p>
+</div>
 </div>
 <div class="section" id="listserv">
-<h3>LISTSERV<a class="headerlink" href="#listserv" title="Permalink to this headline">¶</a></h3>
-<p><a class="reference external" href="https://www.lsoft.com/news/dmarc-issue1-2018.asp">LISTSERV 16.0-2017a</a> and higher will rewrite the From header. Some additional steps are needed for Linux hosts.</p>
+<h4>LISTSERV<a class="headerlink" href="#listserv" title="Permalink to this headline">¶</a></h4>
+<p><a class="reference external" href="https://www.lsoft.com/news/dmarc-issue1-2018.asp">LISTSERV 16.0-2017a</a> and higher will rewrite the From header for domains
+that enforce with a DMARC quarantine or reject policy.</p>
+<p>Some additional steps are needed for Linux hosts.</p>
+</div>
 </div>
 </div>
 <div class="section" id="module-parsedmarc">
@@ -1557,7 +1778,7 @@ or bytes.</p>

 <dl class="function">
 <dt id="parsedmarc.parse_aggregate_report_file">
-<code class="descclassname">parsedmarc.</code><code class="descname">parse_aggregate_report_file</code><span class="sig-paren">(</span><em>_input</em>, <em>nameservers=None</em>, <em>dns_timeout=2.0</em><span class="sig-paren">)</span><a class="reference internal" href="_modules/parsedmarc.html#parse_aggregate_report_file"><span class="viewcode-link">[source]</span></a><a class="headerlink" href="#parsedmarc.parse_aggregate_report_file" title="Permalink to this definition">¶</a></dt>
+<code class="descclassname">parsedmarc.</code><code class="descname">parse_aggregate_report_file</code><span class="sig-paren">(</span><em>_input</em>, <em>nameservers=None</em>, <em>dns_timeout=2.0</em>, <em>parallel=False</em><span class="sig-paren">)</span><a class="reference internal" href="_modules/parsedmarc.html#parse_aggregate_report_file"><span class="viewcode-link">[source]</span></a><a class="headerlink" href="#parsedmarc.parse_aggregate_report_file" title="Permalink to this definition">¶</a></dt>
 <dd><p>Parses a file at the given path, a file-like object. or bytes as a
 aggregate DMARC report</p>
 <table class="docutils field-list" frame="void" rules="none">
@@ -1584,7 +1805,7 @@ aggregate DMARC report</p>

 <dl class="function">
 <dt id="parsedmarc.parse_aggregate_report_xml">
-<code class="descclassname">parsedmarc.</code><code class="descname">parse_aggregate_report_xml</code><span class="sig-paren">(</span><em>xml</em>, <em>nameservers=None</em>, <em>timeout=2.0</em><span class="sig-paren">)</span><a class="reference internal" href="_modules/parsedmarc.html#parse_aggregate_report_xml"><span class="viewcode-link">[source]</span></a><a class="headerlink" href="#parsedmarc.parse_aggregate_report_xml" title="Permalink to this definition">¶</a></dt>
+<code class="descclassname">parsedmarc.</code><code class="descname">parse_aggregate_report_xml</code><span class="sig-paren">(</span><em>xml</em>, <em>nameservers=None</em>, <em>timeout=2.0</em>, <em>parallel=False</em><span class="sig-paren">)</span><a class="reference internal" href="_modules/parsedmarc.html#parse_aggregate_report_xml"><span class="viewcode-link">[source]</span></a><a class="headerlink" href="#parsedmarc.parse_aggregate_report_xml" title="Permalink to this definition">¶</a></dt>
 <dd><p>Parses a DMARC XML report string and returns a consistent OrderedDict</p>
 <table class="docutils field-list" frame="void" rules="none">
 <col class="field-name" />
@@ -1610,7 +1831,7 @@ aggregate DMARC report</p>

 <dl class="function">
 <dt id="parsedmarc.parse_forensic_report">
-<code class="descclassname">parsedmarc.</code><code class="descname">parse_forensic_report</code><span class="sig-paren">(</span><em>feedback_report</em>, <em>sample</em>, <em>msg_date</em>, <em>nameservers=None</em>, <em>dns_timeout=2.0</em>, <em>strip_attachment_payloads=False</em><span class="sig-paren">)</span><a class="reference internal" href="_modules/parsedmarc.html#parse_forensic_report"><span class="viewcode-link">[source]</span></a><a class="headerlink" href="#parsedmarc.parse_forensic_report" title="Permalink to this definition">¶</a></dt>
+<code class="descclassname">parsedmarc.</code><code class="descname">parse_forensic_report</code><span class="sig-paren">(</span><em>feedback_report</em>, <em>sample</em>, <em>msg_date</em>, <em>nameservers=None</em>, <em>dns_timeout=2.0</em>, <em>strip_attachment_payloads=False</em>, <em>parallel=False</em><span class="sig-paren">)</span><a class="reference internal" href="_modules/parsedmarc.html#parse_forensic_report"><span class="viewcode-link">[source]</span></a><a class="headerlink" href="#parsedmarc.parse_forensic_report" title="Permalink to this definition">¶</a></dt>
 <dd><p>Converts a DMARC forensic report and sample to a <code class="docutils literal notranslate"><span class="pre">OrderedDict</span></code></p>
 <table class="docutils field-list" frame="void" rules="none">
 <col class="field-name" />
@@ -1640,7 +1861,7 @@ aggregate DMARC report</p>

 <dl class="function">
 <dt id="parsedmarc.parse_report_email">
-<code class="descclassname">parsedmarc.</code><code class="descname">parse_report_email</code><span class="sig-paren">(</span><em>input_</em>, <em>nameservers=None</em>, <em>dns_timeout=2.0</em>, <em>strip_attachment_payloads=False</em><span class="sig-paren">)</span><a class="reference internal" href="_modules/parsedmarc.html#parse_report_email"><span class="viewcode-link">[source]</span></a><a class="headerlink" href="#parsedmarc.parse_report_email" title="Permalink to this definition">¶</a></dt>
+<code class="descclassname">parsedmarc.</code><code class="descname">parse_report_email</code><span class="sig-paren">(</span><em>input_</em>, <em>nameservers=None</em>, <em>dns_timeout=2.0</em>, <em>strip_attachment_payloads=False</em>, <em>parallel=False</em><span class="sig-paren">)</span><a class="reference internal" href="_modules/parsedmarc.html#parse_report_email"><span class="viewcode-link">[source]</span></a><a class="headerlink" href="#parsedmarc.parse_report_email" title="Permalink to this definition">¶</a></dt>
 <dd><p>Parses a DMARC report from an email</p>
 <table class="docutils field-list" frame="void" rules="none">
 <col class="field-name" />
@@ -1671,7 +1892,7 @@ aggregate DMARC report</p>

 <dl class="function">
 <dt id="parsedmarc.parse_report_file">
-<code class="descclassname">parsedmarc.</code><code class="descname">parse_report_file</code><span class="sig-paren">(</span><em>input_</em>, <em>nameservers=None</em>, <em>dns_timeout=2.0</em>, <em>strip_attachment_payloads=False</em><span class="sig-paren">)</span><a class="reference internal" href="_modules/parsedmarc.html#parse_report_file"><span class="viewcode-link">[source]</span></a><a class="headerlink" href="#parsedmarc.parse_report_file" title="Permalink to this definition">¶</a></dt>
+<code class="descclassname">parsedmarc.</code><code class="descname">parse_report_file</code><span class="sig-paren">(</span><em>input_</em>, <em>nameservers=None</em>, <em>dns_timeout=2.0</em>, <em>strip_attachment_payloads=False</em>, <em>parallel=False</em><span class="sig-paren">)</span><a class="reference internal" href="_modules/parsedmarc.html#parse_report_file"><span class="viewcode-link">[source]</span></a><a class="headerlink" href="#parsedmarc.parse_report_file" title="Permalink to this definition">¶</a></dt>
 <dd><p>Parses a DMARC aggregate or forensic file at the given path, a
 file-like object. or bytes</p>
 <table class="docutils field-list" frame="void" rules="none">
@@ -2053,18 +2274,24 @@ standard RFC 822 format</p>

 <dl class="function">
 <dt id="parsedmarc.utils.get_ip_address_country">
-<code class="descclassname">parsedmarc.utils.</code><code class="descname">get_ip_address_country</code><span class="sig-paren">(</span><em>ip_address</em><span class="sig-paren">)</span><a class="reference internal" href="_modules/parsedmarc/utils.html#get_ip_address_country"><span class="viewcode-link">[source]</span></a><a class="headerlink" href="#parsedmarc.utils.get_ip_address_country" title="Permalink to this definition">¶</a></dt>
+<code class="descclassname">parsedmarc.utils.</code><code class="descname">get_ip_address_country</code><span class="sig-paren">(</span><em>ip_address</em>, <em>parallel=False</em><span class="sig-paren">)</span><a class="reference internal" href="_modules/parsedmarc/utils.html#get_ip_address_country"><span class="viewcode-link">[source]</span></a><a class="headerlink" href="#parsedmarc.utils.get_ip_address_country" title="Permalink to this definition">¶</a></dt>
 <dd><p>Uses the MaxMind Geolite2 Country database to return the ISO code for the
 country associated with the given IPv4 or IPv6 address</p>
 <table class="docutils field-list" frame="void" rules="none">
 <col class="field-name" />
 <col class="field-body" />
 <tbody valign="top">
-<tr class="field-odd field"><th class="field-name">Parameters:</th><td class="field-body"><strong>ip_address</strong> (<em>str</em>) – The IP address to query for</td>
+<tr class="field-odd field"><th class="field-name">Parameters:</th><td class="field-body"><ul class="first simple">
+<li><strong>ip_address</strong> (<em>str</em>) – The IP address to query for,</li>
+<li><strong>parallel</strong> (<em>bool</em>) – parallel processing</li>
+</ul>
+</td>
 </tr>
-<tr class="field-even field"><th class="field-name">Returns:</th><td class="field-body">And ISO country code associated with the given IP address</td>
+<tr class="field-even field"><th class="field-name">Returns:</th><td class="field-body"><p class="first">And ISO country code associated with the given IP address</p>
+</td>
 </tr>
-<tr class="field-odd field"><th class="field-name">Return type:</th><td class="field-body">str</td>
+<tr class="field-odd field"><th class="field-name">Return type:</th><td class="field-body"><p class="first last">str</p>
+</td>
 </tr>
 </tbody>
 </table>
@@ -2072,7 +2299,7 @@ country associated with the given IPv4 or IPv6 address</p>

 <dl class="function">
 <dt id="parsedmarc.utils.get_ip_address_info">
-<code class="descclassname">parsedmarc.utils.</code><code class="descname">get_ip_address_info</code><span class="sig-paren">(</span><em>ip_address</em>, <em>cache=None</em>, <em>nameservers=None</em>, <em>timeout=2.0</em><span class="sig-paren">)</span><a class="reference internal" href="_modules/parsedmarc/utils.html#get_ip_address_info"><span class="viewcode-link">[source]</span></a><a class="headerlink" href="#parsedmarc.utils.get_ip_address_info" title="Permalink to this definition">¶</a></dt>
+<code class="descclassname">parsedmarc.utils.</code><code class="descname">get_ip_address_info</code><span class="sig-paren">(</span><em>ip_address</em>, <em>cache=None</em>, <em>nameservers=None</em>, <em>timeout=2.0</em>, <em>parallel=False</em><span class="sig-paren">)</span><a class="reference internal" href="_modules/parsedmarc/utils.html#get_ip_address_info"><span class="viewcode-link">[source]</span></a><a class="headerlink" href="#parsedmarc.utils.get_ip_address_info" title="Permalink to this definition">¶</a></dt>
 <dd><p>Returns reverse DNS and country information for the given IP address</p>
 <table class="docutils field-list" frame="void" rules="none">
 <col class="field-name" />
@@ -2084,6 +2311,7 @@ country associated with the given IPv4 or IPv6 address</p>
 <li><strong>nameservers</strong> (<em>list</em>) – A list of one or more nameservers to use</li>
 <li><strong>public DNS resolvers by default</strong><strong>)</strong> (<em>(</em><em>Cloudflare's</em>) – </li>
 <li><strong>timeout</strong> (<em>float</em>) – Sets the DNS timeout in seconds</li>
+<li><strong>parallel</strong> (<em>bool</em>) – parallel processing</li>
 </ul>
 </td>
 </tr>
@@ -8,7 +8,7 @@
  
  <meta name="viewport" content="width=device-width, initial-scale=1.0">
  
-  <title>Python Module Index &mdash; parsedmarc 6.1.8 documentation</title>
+  <title>Python Module Index &mdash; parsedmarc 6.2.0 documentation</title>
  

  
@@ -61,7 +61,7 @@
            
            
              <div class="version">
-                6.1.8
+                6.2.0
              </div>
            
          
@@ -8,7 +8,7 @@
  
  <meta name="viewport" content="width=device-width, initial-scale=1.0">
  
-  <title>Search &mdash; parsedmarc 6.1.8 documentation</title>
+  <title>Search &mdash; parsedmarc 6.2.0 documentation</title>
  

  
@@ -59,7 +59,7 @@
            
            
              <div class="version">
-                6.1.8
+                6.2.0
              </div>