Yes, you look at all the DMARC policies you can find, select the ones with the most strict policy reject>quarantine>none and if any reject policy gets a dmarc fails you reject the email... You err in the side of caution rather than permission.
----- Original Message ----- From: "Tim Draegen" <[email protected]> To: "Kurt Andersen (b)" <[email protected]> Cc: [email protected] Sent: Monday, January 18, 2016 10:02:50 AM Subject: Re: [dmarc-ietf] Clarification question on handling multiple domains in RFC5322.from (section 6.6.1) On Jan 18, 2016, at 12:49 PM, Kurt Andersen (b) < [email protected] > wrote: Am I misunderstanding the recommended algorithm? Maybe the example of @ crime.net and @ bank.com might add clarity. If both have a p=reject policy, and only @ crime.net successfully passes the DMARC check, it would be wise to enforce @ bank.com 's reject policy, no? =- Tim _______________________________________________ dmarc mailing list [email protected] https://www.ietf.org/mailman/listinfo/dmarc
_______________________________________________ dmarc mailing list [email protected] https://www.ietf.org/mailman/listinfo/dmarc
