the groups intend is with
DMARCbis in this case.
/ Tobias Herkula
From: dmarc On Behalf Of Murray S. Kucherawy
Sent: Tuesday, March 12, 2024 8:49 PM
To: IETF DMARC WG
Subject: Re: [dmarc-ietf] Problem with multiple policies, different alignment
On Tue, Mar 12, 2024 at 6:23 AM Tobias Herkula
mailto
behavior as
vice versa. As if the 5322.From header domain is “sub1.example.com” the
“adkim:s” would apply and a DKIM signature Domain of “example.com” should not
be considered aligned.
/ Tobias Herkula
From: dmarc On Behalf Of Douglas Foster
Sent: Tuesday, March 12, 2024 12:15 PM
To: IETF DMARC
Signing That, nothing to add.
-Original Message-
From: dmarc On Behalf Of Barry Leiba
Sent: Tuesday, June 27, 2023 4:24 PM
To: Alessandro Vesely
Cc: dmarc@ietf.org
Subject: Re: [dmarc-ietf] easier DKIM, DMARC2 & SPF Dependency Removal
I don't understand how most of your message fits
Sadly they can’t, there are Mailbox Providers that expect SPF Records, so to
maintain deliverability to those, you have to keep SPF records in place and
can’t switch to an DKIM only DMARC.
/ Tobias
From: dmarc On Behalf Of Murray S. Kucherawy
Sent: Sunday, June 18, 2023 2:42 AM
To: Ken
to the next DKIM only
DMARC.
/ Tobias
Von: Seth Blank
Datum: Donnerstag, 8. Juni 2023 um 16:35
An: Barry Leiba
Cc: Seth Blank , Tobias Herkula ,
"dmarc@ietf.org"
Betreff: Re: [dmarc-ietf] DMARC2 & SPF Dependency Removal
I’ll bring data. I think there’s a practical problem he
standard to better reflect our
present requirements, but we also make a clear commitment to the ongoing
evolution and improvement of the protocol.
Best regards,
Tobias Herkula
Mail Security & Transfer
1&1 (GMX, Web.de, Mail.com, IONOS)
___
dmarc
@ietf.org
Cc: Tobias Herkula
Betreff: Re: [dmarc-ietf] Section 5 - DKIM-only authentication
It appears that Tobias Herkula said:
>the often stated argument of simply not publishing SPF records if a
>Sender wants DKIM-only DMARC is not a viable solution in the real world.
If your SPF record accu
One big thing missing in the Discussion are Receiver obligations, I encountered
a lof of Mailbox Providers that demand a valid and concise SPF record, and in
this case the Sender has no way to state that he requires DKIM signatures for
DMARC, the often stated argument of simply not publishing
m ME, like "harharhar.mydomain.example".
-Ursprüngliche Nachricht-
Von: John Levine
Gesendet: Freitag, 5. November 2021 18:58
An: dmarc@ietf.org
Cc: Tobias Herkula
Betreff: Re: [dmarc-ietf] Organizational Alignment Options
It appears that Tobias Herkula said:
>-=-=-=-=-=-
>Threat ris
of most email addresses, and the other complexities of email filtering, I don't
see that DNS lookups are a significant design consideration.
Doug Foster
On Thu, Nov 4, 2021 at 9:19 AM Tobias Herkula
mailto:tobias.herk...@1und1.de>> wrote:
As an entity you want to be on the PSL to declare
As an entity you want to be on the PSL to declare an organizational boundary,
and usage is now for Cookies, Certificates, Domain Reputation and most likely a
longer list of more obscure individual use cases. So most of the time a DNS-RR
on a DNS label that states “I’m a PSL” is the use-case
:13 PM UTC, Dotzero wrote:
>On Mon, Nov 1, 2021 at 6:08 PM Tobias Herkula
>wrote:
>
>> Yes this is used in a significant way, dropping the mechanic of the
>> org-domain would make a lot of things in processing inbound mail
>> streams a lot more complicated.
>>
&
Yes this is used in a significant way, dropping the mechanic of the org-domain
would make a lot of things in processing inbound mail streams a lot more
complicated.
The PSL does not exists for DKIM or DMARC, it is a product of the CAB forum.
And the idea was borrowed for DMARC, but without it,
also like to
emphasis that this is not directly DMARC related as the goal we want to achieve
is different and we also plan to bring our DMARC implementation forward at the
same time.
/ Tobias Herkula
--
Senior Product Owner Mail Security
Product Mail Platform
1&1 Mail & Media GmbH
Vo
This risks sendability with the fact that there are a lof of receivers that
require SPF-RRs. So not providing SPF-RRs also fails with such an requirement.
Besides that does SPF not help with any kind of 5322.From spoofing, but this
ist he most important identifier for an enduser.
/ Tobias
15 matches
Mail list logo
