To prevent someone from spoofing a domain which doesn't send outbound mail, is a (A) nonpremissive SPF sufficient, just a DMARC w/p=reject (B) or should it be a combination (A + B).
Thanks for any insights !
_______________________________________________ dmarc-discuss mailing list [email protected] http://www.dmarc.org/mailman/listinfo/dmarc-discuss NOTE: Participating in this list means you agree to the DMARC Note Well terms (http://www.dmarc.org/note_well.html)
