I'd like to point to two DMARC records: http://www.dmarcian.com/dmarc-inspector/google.com http://www.dmarcian.com/dmarc-inspector/linkedin.com
These are domains with humans behind the domain. So it can be done, it is not too hard, but it is not mainstream (yet)(the spec is only one year old!) and as Mike points out, do it only if you have a phishing problem. We have a few documents you would like to read: http://www.dmarc.org/faq.html#s_16 http://www.dmarc.org/faq.html#s_14 On 3/29/13 9:45 AM, "Michael Adkins" <[email protected]> wrote: > > >On 3/28/13 6:53 PM, "J. Gomez" <[email protected]> wrote: > >>Perhaps creating a subdomain of the owner's domain, and handing control >>of that subdomain over to the outsourced email marketing company will be >>the way to go in an easily-automated way that causes the least of process >>overhead for the domain owner. The "organizational domain" concept of >>DMARC together with DMARC's "relaxed mode" I think will be of great help >>for this approach. > >Yeah, this is how I expect the majority of the medium-to-large customers >to handle it. Folks with a larger number of much smaller customers, such >as constant contact, will likely still have issues with this approach at >scale, but I'm also not sure how many of their customers are phishing >targets so it could be a moot point. _______________________________________________ dmarc-discuss mailing list [email protected] http://www.dmarc.org/mailman/listinfo/dmarc-discuss NOTE: Participating in this list means you agree to the DMARC Note Well terms (http://www.dmarc.org/note_well.html)
