On 3/22/2015 1:39 PM, Stephen J. Turnbull wrote: > Dave Crocker writes: > > > Folks tend to promote DMARC's choice of From field due to the fact > > that it's presented to the end-user, as if the end-user will behave > > differently with DMARC active. The end-user won't. > > I haven't noticed anybody advocating that. The claim is that the user > behavior changes with the identity in the From field, and whether they > trust its authenticity.
Right. And this is claimed in the absence of supporting research and to the contrary of usability experience. > > But there is no 'user' in the handling equation for DMARC. > > Is that all you are trying to say? That seems tautological to me, > since DMARC is a software system that operates (usually) in the MTA. Heh. > I took you to mean that the relationship between the purported > identity in From, based on the address in that field, and the user's > behavior is irrelevant to specification of DMARC and related > protocols. I didn't say that, but I'll say it now, too. (Ignoring the underying truth that users get tricked, which provides the motivation for worrying about spoofing.) d/ -- Dave Crocker Brandenburg InternetWorking bbiw.net _______________________________________________ dmarc mailing list [email protected] https://www.ietf.org/mailman/listinfo/dmarc
