In article <CAMSGcLDKRMbJ_30jZdKE_6hkKaktwBxU6_E=E=bnk2_ckmn...@mail.gmail.com>, Joseph Brennan <[email protected]> wrote: >"Domain administrators must not apply dmarc authentication to domains >from which end users send mail that may be re-sent via lists or >automatic forwarding." -- done. Then dmarc will be simple and >reliable, and bank statements and similar messages are protected as >intended. Building in a standard workaround significantly weakens the >whole concept, doesn't it?
Unfortunately, we have ample evidence that domain operators will ignore that advice. According to someone who was in the room when Yahoo flipped the switch, the person in charge said words to the effect that I know this will screw up everyone's mailing lists and I don't care. R's, John -- Regards, John Levine, [email protected], Primary Perpetrator of "The Internet for Dummies", Please consider the environment before reading this e-mail. https://jl.ly _______________________________________________ dmarc mailing list [email protected] https://www.ietf.org/mailman/listinfo/dmarc
