On 12/02/2021 5:49 pm, Nick Tait wrote:
Perhaps the advice should be: If you are using Sendmail, then (a) you
shouldn't publish a DMARC policy and (b) you shouldn't reject emails
based on failed DMARC check; but if you aren't using Sendmail then as
long as you don't mind rejecting emails from misconfigured domains,
then it is fine to apply whatever policy is published by that domain?
The way I see it at least when you reject an email it might give the
sender a clue that they have a DMARC problem? ...That is, except when
their email has been forwarded by a mailing list. :-(
Sorry I meant to say: "If you are using Sendmail, then (a) you shouldn't
publish a */p=reject/* DMARC policy..."
