Not disagreeing with anything you said, but I do always find it amusing when some group invents a new standard, and then starts scolding people for being “non compliant”, of course wanting customers to believe the “non compliant” people are doing something nefarious. They could use a less pejorative term but that wouldn’t point the blame.
It’s reminiscent of the joke about the ship telling the lighthouse to change course. Or the kid telling the parent that a telephone pole ran into his car. From: Robbie Wright Sent: Tuesday, September 13, 2016 4:01 PM To: [email protected] Subject: Re: [AFMUG] Email DMARC Exactly, that's the point. Our dmarc record says that if an email fails our authentication, 75% of the time they should be sent to spam. This mailing list is not dmarc compliant since it tries to spoof your address when it send the email. The amfug mail system isn't in our spf records, thus fails dmarc validation. This is the way we choose it to be. I'd like to have control of who can send mail on our behalf. Mailing lists are notorious for not being setup correctly to be dmarc complaint, for better or worse. I know you're heavily involved in these lists so it'd be a royal pain for you to use dmarc since most of yours would go to spam. However, that also means nefarious people can easily spoof your domain and send mail pretending to be from your ISP (not your gmail account.) Robbie Wright Siuslaw Broadband 541-902-5101 On Tue, Sep 13, 2016 at 1:27 PM, That One Guy /sarcasm <[email protected]> wrote: rather ironic this response was in my spam folder On Tue, Sep 13, 2016 at 2:47 PM, Robbie Wright <[email protected]> wrote: _dmarc.example.com TXT "v=DMARC1; p=none; But it's worthless. DMARC is great for stopping spear phishing attacks and makes it very hard to spoof domains. It is also the reason that most of these lists can't send email for domains like ours because our dmarc/spf doesn't list them as an authorized sender since the list is trying to fake our email address. But dmarc=none tells the world you know what dmarc is and don't care. Rackspace however, if they are hosting email for you, will be able to cause all kinds of challenges if you don't take care of it. Robbie Wright Siuslaw Broadband 541-902-5101 On Tue, Sep 13, 2016 at 12:44 PM, That One Guy /sarcasm <[email protected]> wrote: rackspace says theyre going to start enforcing this, for whatever that means I glanced through it, sounded like a neat idea even though its not really practical Whats a generic thing to put for the record that basically says "I dont give a shit what you do with it as long as you tell the sender theres an issue, dont tell me about it, cause I dont give a shit, do you know that wild turkey has honey whiskey now? thats some tasty shit, worry about the whiskey and leave me alone" -- If you only see yourself as part of the team but you don't see your team as part of yourself you have already failed as part of the team. -- If you only see yourself as part of the team but you don't see your team as part of yourself you have already failed as part of the team.
