> On Oct 29, 2022, at 10:35 AM, Dotzero <dotz...@gmail.com> wrote:
>
> On Sat, Oct 29, 2022 at 1:30 AM Neil Anuskiewicz <n...@marmot-tech.com> wrote:
>
> <snip>
>>
>> DMARC’s job is to flat out prevent unauthorized spoofing. It’s not a
>> stretch to imagine some higher signature standard without feeling like
>> you’re on DKIM’s turf.
>
> The above statement is so incorrect. DMARC's "job" is to mitigate direct
> domain abuse, nothing more and nothing less.
>
> The use of homoglyphs is a form of "spoofing". DMARC does nothing to prevent
> this.
>
> The use of cousin domains is a form of "spoofing". DMARC does nothing to
> prevent this.
>
> DMARC is very useful for what it does, but that's it. DMARC does not " flat
> out prevent unauthorized spoofing ".
I realize it’s confined to protecting spoofing for the exact domain and since
this list is about DMARC, I assumed, given the context, my use of the word
spoofing would be understood as pertaining to the domain not lookalikes, etc.
Neil
_______________________________________________
dmarc mailing list
dmarc@ietf.org
https://www.ietf.org/mailman/listinfo/dmarc
