Dave Crocker writes: > Folks tend to promote DMARC's choice of From field due to the fact > that it's presented to the end-user, as if the end-user will behave > differently with DMARC active. The end-user won't.
I haven't noticed anybody advocating that. The claim is that the user behavior changes with the identity in the From field, and whether they trust its authenticity. People do make a lot of fuss about the display of the domain (eg, DMARC itself deprecates From munging that puts the address in a comment or the display name in From). While that isn't the whole story (can't be, since often the domain isn't displayed by the MUA), the address in From is an important part of the correspondent's identity, and users tend to trust that it's authentic and the MUA is using the "right" one for each correspondent. I think it's reasonable to suppose that the identity in From does affect user behavior. > But there is no 'user' in the handling equation for DMARC. Is that all you are trying to say? That seems tautological to me, since DMARC is a software system that operates (usually) in the MTA. I took you to mean that the relationship between the purported identity in From, based on the address in that field, and the user's behavior is irrelevant to specification of DMARC and related protocols. _______________________________________________ dmarc mailing list [email protected] https://www.ietf.org/mailman/listinfo/dmarc
