-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 In message <26447.29429.714935.943...@fireball.acr.fi>, Tero Kivinen <kivi...@iki.fi> writes
> Requirements for DMARC validators: > > - MUST implement mailto url for reports (4.7) I do not believe that 4.7 says that > - MUST check SPF and store preserved result (5.3.3) it does not say that, it says it has to be preserved for future use, there is no requirement to store it > - MUST check DKIM and store preserved result (5.3.3) ditto > - MUST store authentication results for eventual presentation back > to the domain owner. (5.3.7) you have missed out a conditionality.. there is no requirement in the document to create aggregate feedback results. > - MUST NOT reject incoming messges solely on the basis of a > p=reject. (7.4) there is a SHOULD NOT in this section > Requirements for Domain owners: these are NOT requirements for Domain owners ... we're not going to say that they MUST send mail ! > - MUST send mail so it produces an SPF-Authenticated identifier (to > configure SPF for DMARC) (5.1.1) You have that backwards (or at least you have failed to express the conditionality), it's IF you want to have validators consider whether there is a valid SPF pass for DMARC THEN you MUST ... 5.1.1 does not say that you need to publish any SPF at all > - MUST send mail that has DKIM signatures that produce a > DKIM-Authenticated identifier (to configure DKIM for DMARC) > (5.1.2) and that is backwards as well >The section 5.3.3 is not very clear that it requiers both SPF and >DKIM, I don't think that it has any such requirement -- and that is a good thing. Requiring SPF, rather than tolerating it, would not make this a useful document. >It seems to bit useless to say that to use xxx you MUST do >xxx :-) that I do agree with - -- richard Richard Clayton Those who would give up essential Liberty, to purchase a little temporary Safety, deserve neither Liberty nor Safety. Benjamin Franklin 11 Nov 1755 -----BEGIN PGP SIGNATURE----- Version: PGPsdk version 1.7.1 iQA/AwUBZ1ADRN2nQQHFxEViEQIkdQCfdAh9Fw0P92a4GhZBp5EbA1X8AtwAoOct A2nvQ+3wBRDSfgg0ODkfTO+Z =vpwe -----END PGP SIGNATURE----- _______________________________________________ dmarc mailing list -- dmarc@ietf.org To unsubscribe send an email to dmarc-le...@ietf.org
