I've shared this a few other places, though, this will probably my last notice about the feature (consider it GA I guess?). If there are substantial updates, I'll announce them here. I'll also have information added to our postmaster site. If you have questions, please contact me off-list. Thanks
We've partially implemented this draft (https://datatracker.ietf.org/doc/draft-brotman-dkim-fbl/). At the moment, this is how it will work: If your domain has sufficient reputation, you can get something like an FBL from comcast.net. We will be adding domain age data to the evaluation of who should be getting reports. The rough idea is that we use valid DKIM signatures to understand who might be interested in FBL data. We use the selector and domain data from the signature to construct DNS queries to look for report destinations. Selector123._feedback._domainkey.example.com TXT "v="DKIMRFBLv1;ra=mailto:f...@example.com;hp=Our-Special-Header"; You can omit the selector, or use a wildcard there. A live example: mo20160413._feedback._domainkey.alerts.xfinity.com. 7200 IN TXT "v=DKIMRFBLv1;ra=mailto:fbl_...@alerts.xfinity.com;hp=X-Comcast-SMTP-Spoor"; The contents of the report are base64-encoded. They will arrive from IPs listed within _spf.mdp.comcast.net, and they will be sent from the alerts.xfinity.com domain. -- Alex Brotman Sr. Engineer, Anti-Abuse & Messaging Policy Comcast _______________________________________________ mailop mailing list mailop@mailop.org https://list.mailop.org/listinfo/mailop
