On Wed, Aug 17, 2022 at 4:28 AM Alessandro Vesely <ves...@tana.it> wrote:
> On Wed 17/Aug/2022 07:20:02 +0200 Neil Anuskiewicz wrote: > >> On Aug 9, 2022, at 3:17 AM, Ken O'Driscoll wrote: > >> > >>> Any hint about why it's not used? > >> > >> PII. Report generators are reluctant to send reports that may contain > PII for compliance, security, and privacy reasons > > > > Most receivers don’t provide failure reports but sometimes failure > reports (when available) can be useful. > > > What can they be useful for? Possible answers (my guessing): > > * A large, complicated organization can find out which machine/ job is > producing bad authentication. (Why cannot this be found in aggregate > reports?) > > When a domain's mail is failing to authenticate, aggregate reports are most useful at identifying the culprit if there is a one-to-one relationship between source IP and host generating mail messages. For the cases of a farm of two or more machines sending from behind a single IP address, the usefulness of the aggregate report in identifying the troublesome host(s) diminishes in direct correlation to the number of hosts using the IP. -- *Todd Herr * | Technical Director, Standards and Ecosystem *e:* todd.h...@valimail.com *m:* 703.220.4153 This email and all data transmitted with it contains confidential and/or proprietary information intended solely for the use of individual(s) authorized to receive it. If you are not an intended and authorized recipient you are hereby notified of any use, disclosure, copying or distribution of the information included in this transmission is prohibited and may be unlawful. Please immediately notify the sender by replying to this email and then delete it from your system.
_______________________________________________ dmarc mailing list dmarc@ietf.org https://www.ietf.org/mailman/listinfo/dmarc