It appears that Richard Clayton <[email protected]> said: >They then moved on to just using random identities from the same domain >as the recipient. This led a great many Yahoo users to believe that a >great many other Yahoo users had been compromised, leading to a >significant loss of faith in the integrity of the platform.
We get that, but why did they have to inflict DMARC policy on the world rather than just adjusting their own mail software to filter out incoming mail with Yahoo return addresses from other places? I assume the answer was that the DMARC code was already written so it was cheaper. >strong, mailing lists (and other forwarders that mangle email) have been >coping with p=reject for nearly a decade -- so that trying >(ineffectually in practice) to make their lives easier at this point is >a snare and a delusion. There seem to be a fair number of people working on ARC who disagree. R's, John _______________________________________________ dmarc mailing list [email protected] https://www.ietf.org/mailman/listinfo/dmarc
