>I think it would be interesting to get more details from John Levine on his >experience with this as he has (in a later message in the thread) mentioned >he's getting this kind of data now for odd architectural reasons.
I'm the legacy registry for seneca.ny.us, a rural county just north of here. One of my registrants is the county government, at co.seneca.ny.us. I have an MX on seneca.ny.us so people can write to me at [email protected] if someone in the county wants to registers a name. They have lots of people at <whoever>@co.seneca.ny.us. I have my usual dmarc record at _dmarc.seneca.ny.us, and I've noticed that since they don't publish a dmarc record (or much of anything else, since their mail is outsourced to O365 and they're not very sophisticated), I get all of their dmarc reports. In this case it's not a big deal, they know who I am, I know who they are, local governments aren't supposed to keep secrets, and the reports don't show anything surprising, but one can imagine situations where it could be an issue. I suppose in principle it might be a problem if some of their mail showed up in failure reports, although since my policy is p=none and as far as I can tell nobody there sends mail to mailing lists, there aren't many of those. R's, John _______________________________________________ dmarc mailing list [email protected] https://www.ietf.org/mailman/listinfo/dmarc
