> -----Original Message----- > From: [email protected] [mailto:dmarc-discuss- > [email protected]] On Behalf Of Carl S. Gutekunst > Sent: Thursday, March 21, 2013 12:18 AM > To: John Levine > Cc: [email protected] > Subject: Re: [dmarc-discuss] Using DMARC to probe corporate compliance > > > >> This is definitely something that will need to be called out in the > >> DMARC draft as a privacy consideration when it is published at some > point. > >> > > > > I have to say that DMARC is a privacy disaster waiting to blow up. > > When used on small domains like mine, I can tell a lot about what > > happened to individual mail messages. > > I've been idly speculating about blackmail angles. I have a short list of > people > I'm sure are forwarding their corporate Email. I've worked at places where > that was grounds for termination. Suppose I threaten to reveal that....? >
It is no different than if you became aware of it through other means. That may be grounds for termination but in many jurisdictions your blackmail attempt could get you prison time. > (OK, so after the MAAWG keynotes in SF, I've been thinking a little more > evil.) > > <csg> > > _______________________________________________ > dmarc-discuss mailing list > [email protected] > http://www.dmarc.org/mailman/listinfo/dmarc-discuss > > NOTE: Participating in this list means you agree to the DMARC Note Well > terms (http://www.dmarc.org/note_well.html) _______________________________________________ dmarc-discuss mailing list [email protected] http://www.dmarc.org/mailman/listinfo/dmarc-discuss NOTE: Participating in this list means you agree to the DMARC Note Well terms (http://www.dmarc.org/note_well.html)
