> Otherwise it is easy to send an email with a domain that contains an > extra letter and bypass DMARC.
It is ALWAYS easy to send an email with a domain that contains an extra letter and bypass DMARC. Lookalike or "cousin" domains are specifically not something it addresses. Keep in mind that is not always a bug. There are a lot of domains that publish DMARC policies, and it is unlikely that there are no other domains that are lexically similar and send their own legitimate mail. R's, John _______________________________________________ dmarc mailing list dmarc@ietf.org https://www.ietf.org/mailman/listinfo/dmarc
