On Tue, Jul 16, 2019 at 10:07 PM Scott Kitterman <skl...@kitterman.com> wrote:
> > Updated rfcdiff attached. The only change other than typos is to add > mention > of 'np' to Appendix A. > Having reviewed the thread and the diff insofar as it pertains to the "np" tag, I'm in favor of the "np defaults to sp" approach. Generally, I think that the proposed text works, but have two concerns: Firstly, I'm a little concerned with the sentence which says 'Note that "np" will be ignored for DMARC records published on subdomains of Organizational Domains and PSDs due to the effect of the DMARC policy discovery mechanism described in DMARC [RFC7489] Section 6.6.3.' I don't think that is an accurate portrayal. When DMARC evaluation libraries are updated to do both PSD lookups and handle the np tag, I would expect the presence of np tags below the PSD level would be processed exactly the way that any other tag in a DMARC record is processed. np will only be ignored (per the terms of the DMARC spec) when it is an "unrecognized" tag. I realized that this text is sort of picked up from the current description of "sp", but the inclusion of "and PSDs" makes it inaccurate. You can't publish an np record on a non-existent Org domain or any subdomain thereof :-) Secondly, I think that we need to update the "p" and "sp" descriptions in both 7489 sections 6.3 & 11.4: - p --> 'Policy applies to the domain queried and to subdomains, unless subdomain policy is explicitly described using the "sp" tag.' change to 'Policy applies to the domain queried and to subdomains, unless subdomain policy is explicitly described using the "sp" or "np" tags.' - sp --> 'Requested Mail Receiver policy for all subdomains (plain-text; OPTIONAL). Indicates the policy to be enacted by the Receiver at the request of the Domain Owner. It applies only to subdomains of the domain queried and not to the domain itself.' change to 'Requested Mail Receiver policy for all subdomains (plain-text; OPTIONAL). Indicates the policy to be enacted by the Receiver at the request of the Domain Owner. It applies only to subdomains of the domain queried if they exist or if there is not an "np" tag published. "sp" does not apply to the domain itself." --Kurt
_______________________________________________ dmarc mailing list dmarc@ietf.org https://www.ietf.org/mailman/listinfo/dmarc
