On Tue 18/Jun/2024 22:44:28 +0200 John Levine wrote:
It appears that Todd Herr <[email protected]> said:
Whether or not it is our collective intent for a domain with no explicit
DMARC policy record to be an Organizational Domain in this scenario is a
discussion I'll invite now.
We have never required a DMARC record at the org domain. That has not
changed.
There are two considerations which I think are worth being considered. One is
that it may sound unnatural to apply the PSD policy when a domain within the
organization is publishing a DMARC record at a level they consider adequate.
If you want an org-wide policy, you can publish a DMARC record at your
org domain. If you don't, you don't. Again, no change.
The other consideration is that that domain possibly used to be the org domain
until the PSD published their own record. This implies that the narrative we
held until rev -30, that psd=n is only needed if the PSD omits psd=y is
actually not true. Registrants of a domain which is not second level are
better off setting psd=n there.
IOW, why not let the org domain be just the shortest of the organization
domains for which a DMARC record was found? It sounds more natural.
There is nothing to change or fix here.
As I'm implementing the tree walk, that's what I'd like to make sure of.
Best
Ale
--
https://www.tana.it/svn/zdkimfilter/branches/treewalk/src/treewalk.c
_______________________________________________
dmarc mailing list -- [email protected]
To unsubscribe send an email to [email protected]
