Re: [dmarc-ietf] Idle Musings - Why Is It DMARC and not DMARD?

On Sat, Aug 5, 2023, at 11:49 AM, Dave Crocker wrote: > On 8/5/2023 9:30 AM, Jesse Thompson wrote: > > Governance seems like the best word to me, since Governance is what > > Reporting has provided to ADs in Monitoring Mode, but I do not want to > > say DMARG out loud either :-) > > Here, too,

Re: [dmarc-ietf] Idle Musings - Why Is It DMARC and not DMARD?

On 8/5/2023 5:06 PM, Tim Wicinski wrote: The former resonates with harried admins, while the later is useful to implementers. Providing a definition that is at odds with established meaning for a word is something that can work tech geeks but is counter-productive when applied for others.

Re: [dmarc-ietf] Idle Musings - Why Is It DMARC and not DMARD?

On Sat, Aug 5, 2023 at 7:38 PM Dave Crocker wrote: > On 8/5/2023 4:23 PM, Neil wrote: > > Also, we understand who our audiences are in reality. Sometimes it’ll be > a harried admin skimming the RFC, and others will take the time to do a > deep dive. Even the harried admin scanning today might

Re: [dmarc-ietf] Idle Musings - Why Is It DMARC and not DMARD?

On Saturday, August 5, 2023 7:38:21 PM EDT Dave Crocker wrote: > On 8/5/2023 4:23 PM, Neil wrote: > > > The language used for DMARC has always been problematic. "Policy" > > > > > > implies control, but the domain owner has no control over the receiving > > > platform. Quarantine and Reject

Re: [dmarc-ietf] Idle Musings - Why Is It DMARC and not DMARD?

On 8/5/2023 4:23 PM, Neil wrote: > The language used for DMARC has always been problematic. "Policy" > implies control, but the domain owner has no control over the receiving > platform.  Quarantine and Reject declare control that also does not exist. Suppose you set a policy of p=reject

Re: [dmarc-ietf] Idle Musings - Why Is It DMARC and not DMARD?

From: Dave Crocker Date: Saturday, August 5, 2023 at 9:49 AM To: Jesse Thompson , Neil Cc: Todd Herr , IETF DMARC WG Subject: Re: [dmarc-ietf] Idle Musings - Why Is It DMARC and not DMARD? > The language used for DMARC has always been problematic. "Policy" > implies control

Re: [dmarc-ietf] Idle Musings - Why Is It DMARC and not DMARD?

On Aug 5, 2023, at 12:57 PM, Benny Pedersen wrote: > > Dave Crocker skrev den 2023-08-05 18:49: > >>> Governance seems like the best word to me, since Governance is what >>> Reporting has provided to ADs in Monitoring Mode, but I do not want to say >>> DMARG out loud either :-) >> Here, too,

Re: [dmarc-ietf] Idle Musings - Why Is It DMARC and not DMARD?

Dave Crocker skrev den 2023-08-05 18:49: Governance seems like the best word to me, since Governance is what Reporting has provided to ADs in Monitoring Mode, but I do not want to say DMARG out loud either :-) Here, too, the domain owner does not govern the platform receiver. good news for

Re: [dmarc-ietf] Idle Musings - Why Is It DMARC and not DMARD?

On 8/5/2023 9:30 AM, Jesse Thompson wrote: Conformance has a synonym Compliance, which may be a reason why people in the ranks of Security and Compliance in "general purpose" Author Domains fixate on p=quarantine|reject as a rubric to assess their perceived security posture without any

Re: [dmarc-ietf] Idle Musings - Why Is It DMARC and not DMARD?

On Sun, Jul 23, 2023, at 4:38 PM, Neil Anuskiewicz wrote: > > On Jun 30, 2023, at 11:33 AM, Dave Crocker wrote: > > > On 6/30/2023 11:22 AM, Todd Herr wrote: > >> Why is the mechanism called "Domain-based Message Authentication, > >> Reporting, and Conformance" and not "Domain-based Message

Re: [dmarc-ietf] Idle Musings - Why Is It DMARC and not DMARD?

> On Jun 30, 2023, at 11:33 AM, Dave Crocker wrote: > > On 6/30/2023 11:22 AM, Todd Herr wrote: >> Why is the mechanism called "Domain-based Message Authentication, Reporting, >> and Conformance" and not "Domain-based Message Authentication, Reporting, >> and Disposition"? > > Say DMARC

Re: [dmarc-ietf] Idle Musings - Why Is It DMARC and not DMARD?

Great question. I’ve been around since the beginning as a very strong DKIM Policy advocate, watching everything, my dumb attempt to summarize: 1) The idea of “reporting” was considered a testing thing. Redundant,. DomainKeys and DKIM had -t test keys. I believed and others as well, felt

Re: [dmarc-ietf] Idle Musings - Why Is It DMARC and not DMARD?

Given Todd's comment that "DMAR" is well defined, but "C" is not-- is it worth explanatory text in the document? I don't think there's any real confusion about what Conformance means. Is it a weird gap to leave while we're updating the document, or does no one think it matters? On Fri, Jun 30,

Re: [dmarc-ietf] Idle Musings - Why Is It DMARC and not DMARD?

On Fri, Jun 30, 2023 at 2:31 PM Murray S. Kucherawy wrote: > On Fri, Jun 30, 2023 at 11:22 AM Todd Herr 40valimail@dmarc.ietf.org> wrote: > >> Why is the mechanism called "Domain-based Message Authentication, >> Reporting, and Conformance" and not "Domain-based Message Authentication, >>

Re: [dmarc-ietf] Idle Musings - Why Is It DMARC and not DMARD?

On 6/30/2023 11:22 AM, Todd Herr wrote: Why is the mechanism called "Domain-based Message Authentication, Reporting, and Conformance" and not "Domain-based Message Authentication, Reporting, and Disposition"? Say DMARC out loud.  Now say DMARD out loud. d/ -- Dave Crocker dcroc...@gmail.com

Re: [dmarc-ietf] Idle Musings - Why Is It DMARC and not DMARD?

On Fri, Jun 30, 2023 at 11:22 AM Todd Herr wrote: > Why is the mechanism called "Domain-based Message Authentication, > Reporting, and Conformance" and not "Domain-based Message Authentication, > Reporting, and Disposition"? Perhaps a better question, why is > "conformance" in the name of the

[dmarc-ietf] Idle Musings - Why Is It DMARC and not DMARD?

Genuine curiosity question here for those who were around at the beginning... Why is the mechanism called "Domain-based Message Authentication, Reporting, and Conformance" and not "Domain-based Message Authentication, Reporting, and Disposition"? Perhaps a better question, why is "conformance" in