On 6/12/2020 8:02 PM, Jim Fenton wrote:
On 6/12/20 10:49 AM, Alexey Melnikov wrote:
About a year ago, I had suggested [1] that the reporting and policy
mechanisms of DMARC be split, and was, I think, the only one supporting
that idea.
Jim, I supported the proposal as well.
https://mailarchive
On 6/13/2020 12:37 AM, Steven M Jones wrote:
On 6/2/20 5:45 PM, Douglas E. Foster wrote:
And consider the fact that today mobile devices are the MUA of choice
for many/most end users. Mobile MUAs are much less likely to show an
rfc5322.From address field even in the message body view.
On my iP
On 6/13/2020 1:19 AM, Hector Santos wrote:
A DKIM Policy compliant list server simply needs to do two things:
1) Prohibit new subscribers using addresses with restrictive domains,
just like it is done here:
https://secure.winserver.com/public/code/html-subscribe?list=winserver
2) Prohibit subm
On 6/12/2020 4:02 AM, Alessandro Vesely wrote:
Hi all,
*From rewriting is the real thing*
==
Rewriting From: is the de-facto standard.
I don't support it.
In a (science-fictitious) scenario where all mailing lists
rewrite the From: header field, DMARC woul
On 6/2/20 5:45 PM, Douglas E. Foster wrote:
As to visibility: The business world still runs on Microsoft Outlook,
and **Outlook presents the From Address** when a message is read. So
it is odd to assert that no one ever sees that data.
[Emphasis added]
Regarding this and a subsequent messag
ARC lets the recipient look back and retroactively do the filtering
the list didn't.
The concern about the creator of an ARC chain spoofing the purported
origin of a message is valid. The above statement is correct, but needs
to be augmented:
Based on the reputation of the creator of
In article <45af2d9b-a2d9-4d5c-b1fd-aae906d3a...@kitterman.com> you write:
>Which still leaves the question of what the value proposition is since
>if you trust the source, what more does ARC really do (I suspect that
>the answer is more tokens to run through your bayesian or whatever
>filter)?
Wh
i just like to know
___
dmarc mailing list
dmarc@ietf.org
https://www.ietf.org/mailman/listinfo/dmarc
On June 12, 2020 11:33:13 PM UTC, "Kurt Andersen (b)" wrote:
>I would like to understand what you mean by:
>
>On Fri, Jun 12, 2020 at 1:02 AM Alessandro Vesely
>wrote:
>
>> . . . ARC chains can be forged.
Not sure what is confusing about that. There's no requirement that signatures
from pre
On 6/12/20 10:49 AM, Alexey Melnikov wrote:
> Hi Alessandro,
>
> On Fri, Jun 12, 2020, at 5:51 PM, Alessandro Vesely wrote:
>> Hi,
>>
>> On Fri 12/Jun/2020 18:09:41 +0200 Alexey Melnikov wrote:
>>> On behalf of DMARC chairs I would like to ask for volunteers to edit future
>>> revisions of draft-k
I would like to understand what you mean by:
On Fri, Jun 12, 2020 at 1:02 AM Alessandro Vesely wrote:
> . . . ARC chains can be forged.
>
--Kurt
___
dmarc mailing list
dmarc@ietf.org
https://www.ietf.org/mailman/listinfo/dmarc
Hi Alessandro,
On Fri, Jun 12, 2020, at 5:51 PM, Alessandro Vesely wrote:
> Hi,
>
> On Fri 12/Jun/2020 18:09:41 +0200 Alexey Melnikov wrote:
> >
> > On behalf of DMARC chairs I would like to ask for volunteers to edit future
> > revisions of draft-kucherawy-dmarc-dmarcbis. We are likely to spli
Hi,
On Fri 12/Jun/2020 18:09:41 +0200 Alexey Melnikov wrote:
On behalf of DMARC chairs I would like to ask for volunteers to edit future
revisions of draft-kucherawy-dmarc-dmarcbis. We are likely to split up the
current document into multiple drafts that can be progressed in parallel, so we
Hi all,
On behalf of DMARC chairs I would like to ask for volunteers to edit future
revisions of draft-kucherawy-dmarc-dmarcbis. We are likely to split up the
current document into multiple drafts that can be progressed in parallel, so we
are seeking multiple editors to help with this.
If you
Hi,
RUF reports are useful for the organizations to understand that an
attack has actually begun (i.e. phishing of bank). This is extremely
useful and helpful tool for security teams. It helps them to act faster
in reacting to such events i.e. via take down requests of phishing sites.
Kind regar
Hi All,
I've been following conversations as best I can via the digest (which was a
bad idea), so switched to single emails.
Based on what I've heard from those just starting off with DMARC and have
received very few failure reports, it's actually useful to get some form of
them (redacted or not)
Hi all,
I'm sorry I didn't queue to talk yesterday. After so many months without
speaking one word of English, I really didn't feel like...
*Why ARC cannot solve the mailing list problem*
===
Assume all mailing lists in the world duly did ARC. Somewh
17 matches
Mail list logo
