Understood there is a lot of complexity in this space. On the other hand there doesn't seem to be a complete solution to email authentication with regard to content modification by email forwarders. The result is that DMARC adoption is low despite its benefit in preventing important classes of email impersonation.
Huh? DMARC is nearly universal among commercial senders. It's not widely adopted among mail systems with human users but it was never supposed to be.
Remember that AOL and Yahoo only turned on p=reject after they each had all their users' address books stolen, spammers were forging mail with addresses that the recipients knew, and they used DMARC to force the cost of their security failures on the rest of the Internet.
Regards, John Levine, [email protected], Taughannock Networks, Trumansburg NY Please consider the environment before reading this e-mail. https://jl.ly _______________________________________________ dmarc mailing list [email protected] https://www.ietf.org/mailman/listinfo/dmarc
