On 2023-07-12 at 05:46:47 UTC-0400 (Wed, 12 Jul 2023 11:46:47 +0200)
Jaroslaw Rafa via mailop <r...@rafa.eu.org>
is rumored to have said:
Exactly, because from my experience SPF, DKIM and DMARC bring very
little
(if anything at all) to security. I
TRUTH.
For the overwhelming majority of sending systems, the only internal
security benefit to implementing SPF/DKIM/DMARC is to make impersonation
of local users by outsiders for the purpose of fraud (so-called "BEC")
much harder.
For most sending domains, targeted forgery to the world at large is a
non-problem. No one is out there impersonating you or me in email to
random strangers for financial gain. Most businesses do not have
widespread 'brand value' that can be stolen by random broadcast forgery.
Mechanisms for general public authentication of email from strangers
exist for the primary benefit of big senders, their customers, and their
prospective customers who need to know that their spam is authentic.
--
Bill Cole
b...@scconsult.com or billc...@apache.org
(AKA @grumpybozo and many *@billmail.scconsult.com addresses)
Not Currently Available For Hire
_______________________________________________
mailop mailing list
mailop@mailop.org
https://list.mailop.org/listinfo/mailop
