On Tue, 22 Oct 2024, Murray S. Kucherawy wrote:
I suggest that this may be true, but we should be calling out the risks we know about so operators can make informed decisions. So don't make rules or forbid anything, sure, but is this ripe for some discussion in Security Considerations or Privacy Considerations?
Section 6.3 of draft-ietf-dmarc-aggregate-reporting, Feedback Leakage, has five paragraphs on this topic. I think we have it covered.
R's, John _______________________________________________ dmarc mailing list -- [email protected] To unsubscribe send an email to [email protected]
