In article <CAHej_8n=ofqbn_6v2vyj9vkfefczo1+jwnppy9vrck4jc_g...@mail.gmail.com> you write: >I believe at one time long ago there was an idea that a second possible >usage for failure reports showing illegitimate mail was to give the domain >owner evidence to present to an abuse desk or takedown vendor to get the >illegitimate mail cut off at its source, but I don't know that for certain.
We did think of that, but at least in my experience all of the failure reports that aren't legit messages handle were random forgeries from Chinese networks where the spammers were just taking addresses from their spam lists. Perhaps if my name were Paypal I'd see some targeted fakery but it's not my impression that kind of faked mail is sent from fixed sources. >Without such a use case, failure reports regarding mail that the domain >owner didn't cause to be originated are just noise, because there's no >action that the domain owner can take. Yup. Still don't think failure reports need a separate document. R's, John _______________________________________________ dmarc mailing list [email protected] https://www.ietf.org/mailman/listinfo/dmarc
