On Sun, 16 Aug 2020, Alessandro Vesely wrote:
If I put my gmail address into the from field, there is no pretending, no
matter what platform I am using.
That conflicts with the coarse-grained authentication strategy,
established at the FTC Email Authentication Summit in November
2004, as Doug^W Michael recalled. >
1. I was making a semantic point, not a technical or technical policy one.
They have to match at some point.
Sorry, that's just wrong. There's no technical reason a mail message
can't have any identifiers the sender wants.
2. There was nothing 'established' at that event. There were interesting
discussions, but that's all.
I wasn't there. Can't it be considered the historic event that marked
domain-level authentication as the promising strategy to counter email abuse?
No, it was just some political theatre. We were already working on SPF
and DKIM.
DMARC took that strategy to the extremes. A number of users and operators
seem to have accepted it. Why cannot we accept it too?
Please review the previous bazillion messages on this topic.
Regards,
John Levine, [email protected], Taughannock Networks, Trumansburg NY
Please consider the environment before reading this e-mail. https://jl.ly
_______________________________________________
dmarc mailing list
[email protected]
https://www.ietf.org/mailman/listinfo/dmarc
