* on the Thu, Jun 18, 2015 at 09:25:42AM +0200, David Hofstee wrote: > Hi,
>> collecting statistics is fine, publishing a policy will make your users hate >> you, and you will deserve it. > Well, DMARC is like a lock on a door: It will keep valid users out too. You > must hand everyone a key and they must use it (and never lose it). Even the > neighbor that feeds the cat. For locks, most people agree it is the right > method. > So, for someone bitten by the 'lock', John here below, his reaction can be > understandable. But you may still need a good lock. Situations differ. > > Personally, I think that monitoring doesn't offer much (it is like reporting a > break-in to the police: It does not help much). So if you have > phishing/malware mails going around: Secure the house. DMARC only really works reliably enough for transactional mail. From my experience, the moment you try to use it in a blocking fashion for general-use email, you will see a large amount of your legitimate outgoing email rejected. If you try to use it for staff or student email at a University, all hell will break loose. You will see this if/when you enable reporting mode. -- Mike Cardwell https://grepular.com https://emailprivacytester.com OpenPGP Key 35BC AF1D 3AA2 1F84 3DC3 B0CF 70A5 F512 0018 461F XMPP OTR Key 8924 B06A 7917 AAF3 DBB1 BF1B 295C 3C78 3EF1 46B4 * Want to hire me? Currently available for full-time and contracts * https://hireme.grepular.com <- More info here
signature.asc
Description: Digital signature
_______________________________________________ mailop mailing list mailop@mailop.org http://chilli.nosignal.org/mailman/listinfo/mailop
