In article <[email protected]> you write: >What I'm struggling to understand is what having authenticated auth-res >from a previous hop helps. this is what i found:
See some of the previous messages. My usual example is a mailing list message that fails DMARC at the final recipient but passed DMARC (as recorded in AAR) when it arrived at the list. This lets the final recipient distinguish between real messages from subscribers and mail from spambots that happened to scrape both the list address and some subscribers' address and sends mail to one pretending to be from the other. (That definitely happens, I've seen it on lists I'm on.) I agree that the ARC document does not do a great job of explaining that. >It would be kind of nice to understand what gap ARC actually plugs and >why it's important if you ask me. Also: there seem to be a lot of ways >to achieve this, but this one is probably the most complicated one that >I can envision. If you want to pass the A-R results through multiple rounds of forwarding, you can't do much less. R's, John _______________________________________________ dmarc mailing list [email protected] https://www.ietf.org/mailman/listinfo/dmarc
