On Tue, May 23, 2023 at 4:13 PM Benny Pedersen via mailop <mailop@mailop.org> wrote:
> Todd Herr via mailop skrev den 2023-05-23 20:54: > > >> Indeed, an email will only be rejected if it has DMARC setup as > >> reject. > > > > There should be one exception to the rule of waiting till after DATA > > to check for a DMARC policy, and that's in the case of the following > > SPF record: > > > >> "v=spf1 -all" > > > > It seems wholly appropriate to reject at MAIL FROM if the RFC5321.From > > domain publishes an SPF policy that says "This domain is not used to > > send mail, ever." > > domains with this spf would possible know that spf is more weak then > then rfc 7505 (nullMX) ? > > I can't speak to the frequency with which MX records are not just checked (so as to ascertain a domain's existence) but also parsed on inbound mail, but the null MX and bare -all SPF record both have their place for parked domains - https://www.m3aawg.org/M3AAWG-Protecting-Parked-Domains-BCP-update-2022-06 -- *Todd Herr * | Technical Director, Standards and Ecosystem *e:* todd.h...@valimail.com *m:* 703.220.4153 This email and all data transmitted with it contains confidential and/or proprietary information intended solely for the use of individual(s) authorized to receive it. If you are not an intended and authorized recipient you are hereby notified of any use, disclosure, copying or distribution of the information included in this transmission is prohibited and may be unlawful. Please immediately notify the sender by replying to this email and then delete it from your system.
_______________________________________________ mailop mailing list mailop@mailop.org https://list.mailop.org/listinfo/mailop