>> Anyone knows another way to keep using such a feature at Gmail with >DMARC reject and quarantine policies? > >There is no way.
Quite right, it's a feature. If a sender is worried about phishing via impersonation attacks, it can first ensure that all of its mail is sent through specific hosts it controls, then ensure that those hosts apply appropriate DKIM signatures, and have appropriate SPF records, and only then can use DMARC reject and quarantine policies. Otherwise, it is useful to publish a dmarc record to collect the statistics, but you're not the intended user of DMARC policy, so don't use it. Keep in mind that a more restrictive DMARC policy is not "better". It can be helpful to deter impersonation attacks, but if the crooks aren't impersonating you to phish you (as they aren't for the vast majority of mail sending domains), more restrictive policies will just lose legitimate mail. -- Regards, John Levine, [email protected], Primary Perpetrator of "The Internet for Dummies", Please consider the environment before reading this e-mail. http://jl.ly _______________________________________________ dmarc-discuss mailing list [email protected] http://www.dmarc.org/mailman/listinfo/dmarc-discuss NOTE: Participating in this list means you agree to the DMARC Note Well terms (http://www.dmarc.org/note_well.html)
