DMARC -> CERT?

[Miles Fidelman]

Just a thought.  I keep thinking that Yahoo's publishing of their 
"p=reject" policy, and the subsequent massive denial of service to lost 
of list traffic might be viewed as a "computer security" incident.

Anybody think that reporting via CERT channels might be an appropriate 
response?

(I do, and probably will - but curious what others think.)

Miles Fidelman

--
In theory, there is no difference between theory and practice.
In practice, there is.   .... Yogi Berra