On Wednesday, June 04, 2014 5:44 AM [GMT+1=CET], John Levine wrote: > > Yes the email is legitimate, but how does the MTA knows it? > > > > Well a bayesian filter has learned that this type of content is > > legitimate, and then one day a spammer uses the same content, but > > change one link... > > That could happen to any mail feature you care to name. > > Big companies send buckets of mail with return addresses like > "donotrespond". A non-deliverable or non-replyable From: line has > never had much connection to whether to deliver the mail.
That is true, but it is not the same to obfuscate the local part in the ReturnAddress/FromHeader, than to obfuscate the domain. Obfuscating the domain is quite suspicious because then, what entity is taking responsibility for that email? What abuse help-desk can the potential receiver recourse to? Regards, J.Gomez _______________________________________________ dmarc mailing list dmarc@ietf.org https://www.ietf.org/mailman/listinfo/dmarc