It appears that Joe Humphreys <joe.humphr...@gmail.com> said: >We send tens of millions of such messages daily. These are messages where >the From address is nore...@application.organization.com, and the DKIM >signing domain is just organization.com. > >I suggest again that the simple answer is for the DMARC record itself to >specify the organizational domain. This is orthogonal to how you discover >the DMARC record.
One of the points of the org domain is to provide a default policy for hostnames like sharepoint12.dallas.organization.com that aren't supposed to send mail and don't have a DMARC record at all. I see how a pointer in a DMARC record could handle this other domain is allowed to sign my mail, but I don't see how it provides the default for all of the random hosts under organziation.com. R's, John _______________________________________________ dmarc mailing list dmarc@ietf.org https://www.ietf.org/mailman/listinfo/dmarc
