Am 02.02.24 um 16:08 schrieb Mark E. Jeftovic via mailop:
We're having a bit of a theological debate internally on whether to
implement DMARC on our SRS forwarder domains.
On 02.02.24 16:26, Kai Bojens via mailop wrote:
Skip SRS and implement ARC for forwarded e-mails. This should solve
all these problems.
It appears that Matus UHLAR - fantomas via mailop <[email protected]> said:
Does anyone blindly trust ARC signatures from random domains?
On 04.02.24 12:08, John Levine via mailop wrote:
No, but we don't blindly trust an SPF pass (SRS or otherwise) either.
we don't, but we can at least verify it and look up the domain reputation.
A credible ARC tells you a lot more than a credible SRS.
That's the point: a credible. Without trusting ARC, you know nothing.
Without trusting SPF domain, you know at least something.
To return to the oriignal question, I'd put a DMARC p=none on any domain
that sends mail with an rua= so you can collect stats and see where your
mail is going.
To answer the first reply, I recommend not to skip SRS and make it work.
--
Matus UHLAR - fantomas, [email protected] ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
The early bird may get the worm, but the second mouse gets the cheese.
_______________________________________________
mailop mailing list
[email protected]
https://list.mailop.org/listinfo/mailop
