Yes, I suspected awhile back that I was the only one in the world implementing mandatory authentication. This group has confirmed it.
But I hold out hope thst others will see the opportunity that it provides. Perhaps someone will read my Best Practices draft and sponsor it as an individual contribution or experimental draft. Doug On Fri, Sep 15, 2023, 9:26 AM Barry Leiba <barryle...@computer.org> wrote: > > Content filtering creates a need for whitelisting > > Any domain may require whitelisting, regardless of sender policy. > > Whitelisting is only safe if it is coupled with an authentication > mechanism which prevents impersonation. > > Therefore, sender authentication, by a combination of local policy and > sender policy, needs to be defined for all possible messages. > > The last statement there is where things go off the rails. No, > nothing has to work perfectly here, and mechanisms are useful and can > well be standardized even when they don't work in "all possible" > situations. > > It's really important that we stop insisting on perfection or nothing, > as that's a false dichotomy. What we have now is demonstrably useful > as *part of* an overall system. We need to move forward with > finishing the document. > > Barry >
_______________________________________________ dmarc mailing list dmarc@ietf.org https://www.ietf.org/mailman/listinfo/dmarc
