Dear all,On the other hand for a hosting company, implementing SPF is just a matter of knowing where the emails are supposed to be sent from. You don't have anything to install on the outgoing mail servers to DKIM-sign.
And with the "include" mechanism, it is very easy to maintain an up-to-date SPF record, even if you have a very large number of customers : you only have one single record to maintain, which is not hard.
In addition, I'd hope to encourage any organization, including hosting comapnies, to know where their mail are supposed to be sent from. It looks like a minimum security knowledge to me.
Regards, David On 18/06/2023 23:06, Ken Simpson wrote:
On Sun, Jun 18, 2023 at 10:56 AM Douglas Foster <dougfoster.emailstanda...@gmail.com> wrote:I suspect that many domain owners have not considered the possibility of using DKIM with SPF NONE. Then there is the concern about evaluators that understand SPF but do not understand DMARC. Do they treat SPF NONE as acceptable or suspicious? For your situation Ken, do your clients have the ability to connect their web-generated email to a DKIM signing server? If not, do you envision providing that service (with SPF AUTH login to ensure clients are kept separate from each other))?Most web hosting customers are simple SMBs - think restaurants, small shops, a car garage, etc. They have no idea what DKIM is, never mind having access to a DKIM signing server. The hosting provider has to hook up everything for them and presumably, with enough encouragement, we could eventually get hosting companies to implement DKIM signing for their customers. That is not the case today.Some transactional email providers provide a DKIM signing service with CNAME-based DKIM key hosting. That's a great concept and we may one day provide it with an API hook allowing the hosting providers to hook this up for their clients at scale.Regards, Ken -- Ken SimpsonCEO, MailChannels <https://www.mailchannels.com/?utm_source=Email%20Signature&utm_medium=Ken%20Simpson&utm_campaign=Website>Facebook <http://bit.ly/2dnoP3K> | Twitter <http://bit.ly/2ehoWni> | LinkedIn <http://bit.ly/2dw87lU>| Help Center <https://mailchannels.zendesk.com/hc/en-us?utm_source=Email%20Signature&utm_medium=Ken%20Simpson&utm_campaign=Help%20Center>Our latest case study video: watch here! <https://www.youtube.com/watch?v=psb41xDIL9k>_______________________________________________ dmarc mailing list dmarc@ietf.org https://www.ietf.org/mailman/listinfo/dmarc
-- "Mieux vaut viser la perfection et la rater que viser la médiocrité et l'atteindre." - Francis Blanche David Verdin Chef de Projet Collaboratif Département PROduits NUMériques Direction des Services Applicatifs RENATER - Rennes
smime.p7s
Description: S/MIME Cryptographic Signature
_______________________________________________ dmarc mailing list dmarc@ietf.org https://www.ietf.org/mailman/listinfo/dmarc
