Alessandro Vesely writes: > On Mon 26/Jun/2023 19:32:53 +0200 Douglas Foster wrote: > > DKIM+SPF says "our domain, including subdomains covered by this policy, > > will never use an ESP". (Since most ESP messages pass SPF based on the ESP > > domain)
That is incorrect. It would also mean we will NEVER send email to anybody who would want to forward that email to some other place. How is that adminstrator putting the DKIM+SPF policy be sure of that? If they ever send any emails to customers, contractors, friends etc, they can never be sure those emails are not forwarded, thus they can't say DKIM+SPF. I can easyly see some big companies wanting to lock in their customers by making it hard to change email addresses, but we should build or protocols for those companies, but instead allow freedom of movement where people are reading their emails. > ESPs can provide include files for those who wish otherwise. I know that some companies in finland has included the iki.fi IP-addresses ranges to their SPF records, because they had several complains from people of SPF failures when they were sending emails to iki.fi addresses. We even added _spf.iki.fi DNS record for them to use for their include when it was requested, but I do not consider that good practice for solving issues of the SPF. -- [email protected] _______________________________________________ dmarc mailing list [email protected] https://www.ietf.org/mailman/listinfo/dmarc
