> As we may have mentioned a few times before. PSDs that send their own > mail are extremely rare. You can probably count them all on your fingers. > > I cannot understand why someone would want to introduce this giant > security risk to benefit a tiny exotic set of domains that is almost > too small to measure.
Indeed: this *has* come up many times and continues to, in various versions. I think we need to settle this point clearly, so let's be clear about that now: The sense I get from discussions is that we *do* have rough consensus that we prefer not to cater to truly small edge cases, and that when we're proposing things that address them and try to close them we're doing it by way of being engineers and looking for that perfection. So the question: Does anyone *really* think we *do* have to close out these edge cases at the risk of complexity, incompatibility, or other down-sides? If you do, please explain why it's worth it and give a *real world* not theoretical example that shows the importance of doing so. Barry, as chair _______________________________________________ dmarc mailing list [email protected] https://www.ietf.org/mailman/listinfo/dmarc
