On Tue 15/Sep/2020 18:02:01 +0200 Joseph Brennan wrote:
On Tue, Sep 15, 2020 at 11:55 AM John Levine <[email protected]> wrote:
In article <CAMSGcLDKRMbJ_30jZdKE_6hkKaktwBxU6_E=ebnk2_ckmn...@mail.gmail.com>,
Joseph Brennan <[email protected]> wrote:
"Domain administrators must not apply dmarc authentication to domains
from which end users send mail that may be re-sent via lists or
automatic forwarding." -- done. Then dmarc will be simple and
reliable, and bank statements and similar messages are protected as
intended. Building in a standard workaround significantly weakens the
whole concept, doesn't it?
Unfortunately, we have ample evidence that domain operators will
ignore that advice.
According to someone who was in the room when Yahoo flipped the
switch, the person in charge said words to the effect that I know this
will screw up everyone's mailing lists and I don't care.
The irony is, the result being to diminish the effectiveness of dmarc for
everybody.
On the other hand, it was a tremendous push for DMARC adoption.
Best
Ale
--
_______________________________________________
dmarc mailing list
[email protected]
https://www.ietf.org/mailman/listinfo/dmarc
