On 6/10/2014 2:27 AM, Christian Laußat wrote:
DKIM also had a policy method: ADSP. But it wasn't widely implemented
and is now the RFC status is now "historic". So maybe DMARC is then
new ADSP for DKIM?
That's the way I view it especially based on
http://www.dmarc.org/faq.html#g_4
What happens if a sender uses DMARC and ADSP?
ADSP enables domain owners to publish a policy telling compliant
receivers to reject messages that fail to verify with DKIM. While
ADSP never achieved widespread adoption, it was put into production
by a number of senders and receivers at different times.
The DMARC standard states in Section 7, "Policy Enforcement
Considerations," that if a DMARC policy is discovered the receiver
must disregard policies advertised through other means such as SPF
or ADSP. Interested readers may also wish to reference Appendix C,
"Issues With ADSP In Operation," for more information about how
experience with ADSP informed work on DMARC.
Because a domain owner has to actively take steps to publish DNS
records to request DMARC processing, there should be awareness of
any ADSP records that may still be present in DNS.
So theoretically to implement DMARC in SA, we should be ignoring both
SPF and ADSP.
Overall, I think the right avenue is a Feature Request for DMARC support
in SA. Can you open a bugzilla issue for that?
Regards,
KAM
