On Thu 13/Apr/2023 18:01:40 +0200 John R Levine wrote:
I'm trying to figure out where best to say this, but when you say p=reject, you are saying your mail is *not* important, and if there is any doubt about it, you want recipients to throw it away, even though some of your real mail will get lost.
Hm... What p= should I set i I consider my mail important and wand people to throw away fakes?
To wit, if there was a Mailman option to say "reject my posts on verification failure", I'd click it. In this respect, reject is much safer than quarantine, because, if the message was authentic, I'd get a bounce, correct a signing error and re-send. Pretty safe.
In ADSP I made the equivalent policy "discardable" to reinforce this point. My co-authors weren't happy about it, but they couldn't disagree.
ADSP was different from DMARC. Best Ale -- _______________________________________________ dmarc mailing list [email protected] https://www.ietf.org/mailman/listinfo/dmarc
