On 2017 Feb 12, 21:26, Viktor Dukhovni wrote: > DO NOT publish DMARC policy. DO NOT check DMARC policy, except > perhaps as a small bump in a composite spam score.
The "DO NOT publish DMARC policy" is a bit extreme, IMHO. I find it useful, and without any bad consequences, to publish a DMARC policy of "p=none", and then collect the DMARC reports other mail operator send to me, so that I know how much my domains are being spoofed, and from what network addresses/blocks. That is valuable insight. Even if we were to condemn DMARC, its reporting capabilities are worthy by themselves. Regards, -- Josh Good
