I'm hearing consensus that an aggregate report should retain a disposition of "none" when the dmarc policy is "none", but when the policy is quarantine or reject, "pass" should be used to disambiguate the use cases. Further, there's been one suggestion that even in the case of a policy of none, if the mail passes an aligned authentication check, the status should be "pass".
Are there any objections to the overall consensus, or further commentary on the case of an aligned pass with a policy of none? +1s are also welcome. In 24 hours I'll record consensus; if there's no clear consensus on the aligned pass case, then I'll open a separate ticket for it. On Fri, Sep 25, 2020 at 10:17 AM Kurt Andersen (b) <[email protected]> wrote: > On Thu, Sep 24, 2020 at 1:39 AM Murray S. Kucherawy <[email protected]> > wrote: > >> On Sun, Jun 7, 2020 at 2:23 PM Seth Blank <seth= >> [email protected]> wrote: >> >>> https://trac.ietf.org/trac/dmarc/ticket/51 >>> >>> In a DMARC aggregate report, a record with a disposition of "none" is >>> ambiguous, as a disposition of "none" at p=none means a different thing >>> (that no action was taken on the message) than a disposition of "none" if >>> the DMARC policy is reject or quarantine (the message passed an aligned >>> authentication check of either SPF or DKIM, and was therefore not subject >>> to policy). >>> >>> It is desirable to have logically distinct disposition responses, and if >>> so, what should be reported in the latter case? As a straw man, "pass" >>> instead of "none"? >>> >> >> Given the choices, I like "pass". >> > > +1 to pass - but I'd go further than Ale and use pass whenever the DMARC > evaluation passes regardless of the policy setting in the DMARC record. > > --Kurt > -- *Seth Blank* | VP, Standards and New Technologies *e:* [email protected] *p:* 415.273.8818 This email and all data transmitted with it contains confidential and/or proprietary information intended solely for the use of individual(s) authorized to receive it. If you are not an intended and authorized recipient you are hereby notified of any use, disclosure, copying or distribution of the information included in this transmission is prohibited and may be unlawful. Please immediately notify the sender by replying to this email and then delete it from your system.
_______________________________________________ dmarc mailing list [email protected] https://www.ietf.org/mailman/listinfo/dmarc
