Suddenly someone clever may come up with a use case, and start sending
bogus third-party reports.

I really, really, do not want to waste time on "this has never happened in the past decade and nobody can think of a plausible reason to do it but it MIGHT happen" stuff. We'll be here until the end of time if we do.

R's,
John

PS:

As written now, carried over from 7489:

  Email streams carrying DMARC feedback data MUST conform
  to the DMARC mechanism, thereby resulting in an aligned
  "pass" (see Section 3.1). This practice minimizes the
  risk of report consumers processing fraudulent reports.

It's true that what it says is wrong, since in fact it doesn't have any material effect, but I don't think it's worth changing.

_______________________________________________
dmarc mailing list -- dmarc@ietf.org
To unsubscribe send an email to dmarc-le...@ietf.org

Reply via email to