On Thu, 8 Feb 2024, Randolf Richardson, Postmaster via mailop wrote:
I believe the day will come when it will be pointless to send eMail
from a domain that doesn't have a properly-configured SPF record and
all of its outbound mail signed with DKIM.
The bulk of problematic email now -- I see phishing as the concern rather
than spam that gets easily tagged -- comes with valid SPF and is signed
with DKIM.
Technical solutions just don't work these days. A couple of hours is all
it takes to write the ansible to deploy a complete sending MX with all the
bells and whistles and the phishers don't mind buying domains to control
the DNS. Otherwise, they're just sending through compromised accounts with
all the legitimacy that sending through gmail/microsoft grants them.
All the endless technical approaches do is generate headache for existing
small mail operators and generate revenues for *aaS operators on the pitch
that "mail is hard".
--
Andre van Eyssen. Phone: +61 417 211 788
mail: an...@purplecow.org http://andre.purplecow.org
About & Contact: http://www.purplecow.org/andre.html
_______________________________________________
mailop mailing list
mailop@mailop.org
https://list.mailop.org/listinfo/mailop
