>I understand the idea of sending DMARC reports sounds great, but I don’t think >any of our business servers >support it as of yet, but I’ll definitely be asking vendors...
I have 92,000 aggregate reports and 55,000 failure reports that I've gotten since 2012. If you're not a large provider, sending reports is much less interesting than receiving them. If it's not clear, the difference between DKIM and DMARC is that DMARC ties the signature to the domain on the From: line. When the domain is a phishing target, and there isn't a lot of legitimate mail that DMARC can't describe, it can be a useful clue to identify phishes. For domains like paypal.com, if DMARC fails, you can be quite certain that you don't want the mail. For domains like yahoo.com, maybe or maybe not. R's, John _______________________________________________ mailop mailing list mailop@mailop.org https://chilli.nosignal.org/cgi-bin/mailman/listinfo/mailop
