At one point, Ale had suggested a fourth state, for "Both", when an organization boundary exists above (to a PSO) and below (for private registrations.) We can finesse that by ignoring the "boundary below" indicator when the evaluation does not move up from below.
But we do have a difference between PSOs, which never send mail, and private registrars, which may or may not send mail from the domain or subdomain used as a private registration point. It seems desirable to resolve this ambiguity so that we can reliably know that a true PSO cannot be impersonated, while allowing private registrars to document their configuraion. A "sendsmail=(y,n)" indicator would accomplish this purpose. For "psd=y" records, the default will be "sendsmail=n", while for other records the default will be "sendsmail=y". This ensures that most participants do not need to publish the indicator. It has two expected uses: - "sendsmail=y" For private registrars to indicate that they also send mail from the "psd=y" domain name, and - "sendsmail=n" For an organization that only sends mail from subdomains, and wants to strongly protect the organizational domain from impersonation. Doug On Wed, Mar 23, 2022 at 6:37 AM Alessandro Vesely <[email protected]> wrote: > On Tue 22/Mar/2022 18:35:03 +0100 Ken O'Driscoll wrote: > >> > >> I don't think there is any other place where the default is not one of > >> the explicit options. The benefit of psd=u, such as it might be, is to > >> make it more consistent, and to be clear that we really mean it when we > >> say that psd=y, psd=n. and psd=u mean three different things. > >> > >> This is not a big deal but I do think I've seen confusion, e.g., people > >> wrongly concluding that all existing DMARC records will have to have > >> psd=n added. (I suppose those people will now demand psd=u, so you can't > >> win.) > > > > +1 > > > > Having different behaviour for the absence of the tag and the default > value will be unnecessarily confusing and not intuitive. > > > +1, I don't agree so much on obscuring the actual meaning, but since there > are > (at least) three states, enumerating three values is clear-headed. > > > Best > Ale > -- > > > > > > > _______________________________________________ > dmarc mailing list > [email protected] > https://www.ietf.org/mailman/listinfo/dmarc >
_______________________________________________ dmarc mailing list [email protected] https://www.ietf.org/mailman/listinfo/dmarc
