According to Marco Davids (SIDN) via mailop <[email protected]>: >>> No, that's not what RFC 9989 says. The psd=y/n tags are expected to be rare. >> >> Confirmed rare for psd=y at present. > >What do ICANN's rules say about this? I seem to recall that registries >are not allowed to simply add DMARC and other records to a gTLD zone. Is >that correct?
There is a complicated process for a registry to ask to add new things to a TLD. The .BANK and .INSURANCE registry did so to add _dmarc records, ICANN got a report from an independent expert (who happened to be me) that said it's fine, so they did. If other TLDs want to add them I expect they can point to those two so they don't have to redo the whole process. Those two TLDs carefully vet applicants to be sure they really are banks or insurance companies, and have policies requiring registrants to use p=reject. Their DMARC records are mostly there to collect statistics and be sure the registrants haven't screwed up. For the vast majority of TLDs there is no need to publish a DMARC record, because as I said a few messages back, the default behavior does the right thing. The main reason you'd publish psd=y is if you have a public suffix underneath another public suffix. There's a few thousand of those, but that's a tiny fraction of the million or so domains that do mail. R's, John -- Regards, John Levine, [email protected], Primary Perpetrator of "The Internet for Dummies", Please consider the environment before reading this e-mail. https://jl.ly _______________________________________________ mailop mailing list [email protected] https://list.mailop.org/listinfo/mailop
