On June 9, 2014 11:15:18 AM EDT, Barry Leiba <[email protected]> wrote: >> We based DMARC spec on the From header because it is visible to the >end >> user. > >Yes. >Unfortunately, that's sort of a red herring. Most email clients show >the "pretty text" of the From (the display-name ABNF construct) if it >exists, and actually *hide* the actual address (the addr-spec ABNF >construct). > >Putting as much value on RFC5322 From as DMARC does follows >conventional wisdom, but I believe that wisdom is flawed. > >Of course, that speaks to the advice you want to give: tell UIs that >they should show the From addr-spec to users always. But be clear >about what you're asking for: you're not saying they should do it >because it's objectively "right"; you're saying they should do it >because it helps support the decision that DMARC has made.
If any authentication technology is going to work, DMARC or whatever, it will have to be tied to some kind of identifier. 5322.From is as good as any and better than most. Scott K _______________________________________________ dmarc mailing list [email protected] https://www.ietf.org/mailman/listinfo/dmarc
