> Same-domain phishing is highly effective, so anything that addresses it is a > prudent >control to deploy.
Yes, I believe it. > Thus, inbound DMARC filtering is desirable for corporate infrastructure. No, for this threat it's irrelevant. Surely we don't have to explain why you don't need DMARC to implement a policy about mail from your own domains on your own servers. You just do it. Someone at Cisco told me they were doing inbound phish filtering almost a decade ago with IIM, one of the predecessors to DKIM. R's, John _______________________________________________ dmarc-discuss mailing list [email protected] http://www.dmarc.org/mailman/listinfo/dmarc-discuss NOTE: Participating in this list means you agree to the DMARC Note Well terms (http://www.dmarc.org/note_well.html)
