On 6/19/2020 10:41 AM, Todd Herr wrote:
Not only that, but DMARC is the only one of the three that is
necessarily tied to the domain in the (usually) visible in the MUA
From header.
Todd,
There is no evidence that end-users are relevant to
manipulated/fraudulent From: fields or that DMARC's "certifying" the
domain name of the From: field is relevant to reducing end-user
vulnerability.
There is quite a bit of evidence that improving trust signals to end
users has no significant effect.
d/
--
Dave Crocker
Brandenburg InternetWorking
bbiw.net
_______________________________________________
dmarc mailing list
[email protected]
https://www.ietf.org/mailman/listinfo/dmarc
