>A claim that attackers will use work-arounds creates a desire for >measuring use of work-arounds...
Here's an anecdote: I've been getting a fair amount of spam from what are obviously stolen AOL address books, since I recognize the sender and the other recipients. Now I'm getting the same spam, but the From: line has her name as the comment, same as always, but some random non-AOL address. I suppose that suggests that DMARC may have been somewhat effective at stopping the phish using the exact address, so they're doing what lists do, munge the address to hide it from DMARC. R's, John _______________________________________________ dmarc-discuss mailing list [email protected] http://www.dmarc.org/mailman/listinfo/dmarc-discuss NOTE: Participating in this list means you agree to the DMARC Note Well terms (http://www.dmarc.org/note_well.html)
