In article <d80c51c9-72f1-2162-3845-09ca4bda9...@gaspard.io> you write:
>Sometimes I'm thinking DMARC should have enforced DKIM, and not allowed
>to have only a match in {SPF, DKIM}, because it leads to issues like
>broken-DKIM working-SPF domains not noticing things are wrong even
>though they *are*…That was ADSP. It was even worse than DMARC. At some point you have to allow believe what people say. If they're sending mail with broken signatures and strict DMARC policies, they are asking people to throw it away. Remember, p=reject doesn't mean mail is important. It means mail is so UNimportant that you should throw it away if there's any question about its authenticity. R's, John _______________________________________________ mailop mailing list mailop@mailop.org https://chilli.nosignal.org/cgi-bin/mailman/listinfo/mailop
