> On Apr 12, 2023, at 9:41 AM, John R Levine <jo...@taugh.com> wrote: > > When we say that mail systems that don't fit the DMARC threat profile > shouldn't publish DMARC policies, we have good reasons to say so, and that's > what our standards need to say if we're serious about interoperating. >
With DMARCbis, If domains MUST NOT publish p=reject is mandated for certain classes of domain mail, then it should also apply to MUST NOT honor p=reject as a recommendation for verifiers. If so, - Should MDA receivers ignore sender p=reject for local users? - Should MLM strip the submission security (From rewrite)? — HLS _______________________________________________ dmarc mailing list dmarc@ietf.org https://www.ietf.org/mailman/listinfo/dmarc