We have ~700 parked domains which shouldn't generate mail (spf = -all), but I want to hear about it if they do. I'm not looking forward to generating 700 entries with rua/ruf addresses plus 700 verification records in our primary domain for each of the parked domains. What is the most efficient and maintainable implementation?
e.g. _dmarc.parked1.com txt vDMARC1;p=reject; rua=mailto:[email protected]; ruf=mailto:[email protected]; pct=100; sp=reject _dmarc.parked2.com txt vDMARC1;p=reject; rua=mailto:[email protected]; ruf=mailto:[email protected]; pct=100; sp=reject etc. and then in example.com creating all the verification records. parked1.com._report._dmarc.example.com v=DMARC1; parked2.com._report._dmarc.example.com v=DMARC1; etc... I did find this: http://www.dmarc.org/pipermail/dmarc-discuss/2012-June/000792.html which suggests using cnames on the parked records, which at least means I don't need to edit each parked record if the reporting mailbox changes! _dmarc.parked1.com cname _dmarc.template.example.com _dmarc.template.example.com txt vDMARC1;p=reject; rua=mailto:[email protected]; ruf=mailto:[email protected]; pct=100; sp=reject Thanks.
_______________________________________________ dmarc-discuss mailing list [email protected] http://www.dmarc.org/mailman/listinfo/dmarc-discuss NOTE: Participating in this list means you agree to the DMARC Note Well terms (http://www.dmarc.org/note_well.html)
