>From the document: "Without exception management, Sender Authentication dies as soon as an exception is necessary. A poorly designed exception process may enable the very impersonations that Sender Authentication is intended to prevent."
It could also be subtitled, "How to use Sender Authentication without damaging mailing lists." Doug Foster ---------- Forwarded message --------- From: <internet-dra...@ietf.org> Date: Sat, May 13, 2023 at 9:28 PM Subject: New Version Notification for draft-fosterd-dmarc-spf-best-practices-00.txt To: Douglas Foster <dougfoster.emailstanda...@gmail.com> A new version of I-D, draft-fosterd-dmarc-spf-best-practices-00.txt has been successfully submitted by Douglas Foster and posted to the IETF repository. Name: draft-fosterd-dmarc-spf-best-practices Revision: 00 Title: Sender Authentication Best Practices Document date: 2023-05-13 Group: Individual Submission Pages: 12 URL: https://www.ietf.org/archive/id/draft-fosterd-dmarc-spf-best-practices-00.txt Status: https://datatracker.ietf.org/doc/draft-fosterd-dmarc-spf-best-practices/ Html: https://www.ietf.org/archive/id/draft-fosterd-dmarc-spf-best-practices-00.html Htmlized: https://datatracker.ietf.org/doc/html/draft-fosterd-dmarc-spf-best-practices Abstract: Sender Authentication contributes to the goal of detecting and blocking maliciously impersonated email identifiers. Sender Policy Framework (SPF) (RFC 7208) validates the RFC5321.MailFrom address, and Domain-based Message Authentication, Reporting, and Conformance (DMARC) (RFC 7489) validates the RFC5322.From header address. Both techniques may produce a result other than PASS on a message that the recipient considers acceptable and wanted. This document describes best practices for integrating SPF and DMARC into an email filtering strategy. The IETF Secretariat
_______________________________________________ dmarc mailing list dmarc@ietf.org https://www.ietf.org/mailman/listinfo/dmarc