Peter N. M. Hansteen asks the question, "Does Your Email Provider Know What A "Joejob" Is?" in his blog and provides some data and discussion. He provides anecdotal evidence which seems to indicate that Google and possibly other mail service providers are either quite ignorant of history when it comes to email and spam, or are applying unsavory tactics to capture market dominance.
[Ed Note: I had to look up "joe job" to find out what it is. According to wikipedia:
A joe job is a spamming technique that sends out unsolicited e-mails using spoofed sender data. Early joe jobs aimed at tarnishing the reputation of the apparent sender or inducing the recipients to take action against them (see also e-mail spoofing), but they are now typically used by commercial spammers to conceal the true origin of their messages.
]
(Score: 0) by Anonymous Coward on Monday April 25 2016, @04:17PM
> For support of this proposition, look at the scores for DKIM in SpamAssassin.
So I took you up on that and did go looking.
The rule that would be most useful is still just a test-mode rule - T_DKIM_INVALID - the message fails DKIM validation.
Apparently the reason they have not promoted that to a full-blown rule is that too many domains have screwed up their DKIM implementation and it would give too many false positives if they made it an official rule.
That's not really an indictment against DKIM being effective, but rather a problem of too many sloppy sysadmins.