On Thu, Apr 17, 2014 at 12:52 PM, John Sweet <[email protected]> wrote: > On Thursday, April 17, 2014 5:44 PM, Joseph Humphreys wrote: >> >> At one time I suggested adding a feature to list domains that could be >> considered "in alignment" with yours. So if a domain owner wanted to >> authorize an email service provider, they could just add something to their >> DMARC policy to specify the domain the ESP uses for SPF/MailFrom and/or DKIM >> signing. I am still curious what's wrong with this proposal. > > > How is this not covered by SPF "include:"? > > If your message has both MAILFROM and RFC822 From: aligned on your domain, > and the connecting IP is in the range of the included domain, it's all good. >
I just replied to a similar question from John Levine, that I'm trying to support a use case where SPF will not be in alignment: a third-party sender that wants to handle bounces on behalf of the author. Vlatko Salaj also brought up the case of using gmail to send mail with a From header in your own domain. (Gmail seems to use your gmail address as the MAILFROM address.) Just to generalize the point: requiring alignment for the purpose of using SPF to authenticate the From header has the unintended (I think) consequence of restricting the Return-Path to the same domain. An aligned-domain list would not have this consequence. Regards, Joe Humphreys _______________________________________________ dmarc mailing list [email protected] https://www.ietf.org/mailman/listinfo/dmarc
