On 02/07/2014 03:19 AM, Michael Adkins wrote:
DMARC has the notion of 'trusted forwarders' defined in the spec and accounted for in the reporting. There are a few different ways to do that, some that border on secret sauce, and are mostly a combination of a reputation or trust system combined with something observable in the header or the traffic patterns.
...
From experience, I can tell you that if you exempt email signed by google groups, yahoo groups and it's international flavors, and microsoft live groups, then you will have solved the problem for 90% of users.
Most of the others are also pretty easy to find: any source which has a relatively stable long term message volume and a very low detected spam rate but authentication failures for a large number of domains is almost certainly a well-behaved forwarder that, at least as a first approximation, can be exempted from DMARC processing.
- Roland _______________________________________________ dmarc mailing list [email protected] https://www.ietf.org/mailman/listinfo/dmarc
