On Tue 08/Oct/2024 13:14:23 +0200 Douglas Foster wrote:
The proper use of DMARC is something that is not fully automated, and in its optimal from is not simple:
I agree it's not simple. But it could be fully automated if receivers took care of users subscriptions. That would require ARC signing forwarded messages so that receivers can verify recipients did subscribe to the signer.
ARC is currently at a deplorable state where signers add an ARC set at every internal hop but don't care to tell the receivers which of their users subscribed to which mail stream. Receivers have to learn by statistics.
"DMARC provides the starting point for a learning process which, when combined with other tools and human effort, detects malicious actors and isolates potentially-malicious impersonation to a progressively smaller subset of all mail."
Yes, learning, guessing and arranging is what we have to do until a precise method of forwarding messages becomes global.
Best Ale -- _______________________________________________ dmarc mailing list -- [email protected] To unsubscribe send an email to [email protected]
