On Sat, Jun 26, 2021 at 12:36 PM Douglas Foster < [email protected]> wrote:
> DMARC is very effective for message authentication. DMARC PASS allows > preferred handling to be applied without fear of spoofing. For example: > > If DMARC=PASS > and RFC5322.FROM ends with “EXAMPLE.COM” > they Bypass Tests ( “Spam Scoring”, “Attachment Restrictions” ) > > (Curiously, I had trouble finding products which could implement this type > of rule, suggesting that we need more best practice documentation.) > > > The reason you can't find products implementing that type of rule is because there is no need for such a rule. DMARC establishes the authenticity of the identity of the party responsible for the message; DMARC makes no claim as to the quality, worthiness, or desirability of the message. DMARC ensures that your mail gets treated in a manner that is consistent with the reputation earned by the responsible identity. Spam messages can and do pass DMARC authentication checks every single day, and in large numbers. Passing DMARC should not lead to bypassing tests such as Spam Scoring or Attachment Restrictions. All spoofs are spam, but not all spam is spoofed. -- *Todd Herr* | Technical Director, Standards and Ecosystem *e:* [email protected] *m:* 703.220.4153 This email and all data transmitted with it contains confidential and/or proprietary information intended solely for the use of individual(s) authorized to receive it. If you are not an intended and authorized recipient you are hereby notified of any use, disclosure, copying or distribution of the information included in this transmission is prohibited and may be unlawful. Please immediately notify the sender by replying to this email and then delete it from your system.
_______________________________________________ dmarc mailing list [email protected] https://www.ietf.org/mailman/listinfo/dmarc
