On Tue, 16 Aug 2016 10:00:12 +0200 Merijn van den Kroonenberg wrote:
> Alternatively you could also set up a dns based list of sender > domains. In fact I have been wondering if someone is maintaining a > list like that. Because I guess a lot of people must be doing similar > things on their own. Eg. we require dkim of spf to be present for > some local bank domains. Especially banks and the like have already a > policy, often specified on their site, for which of their domains > require dkim or spf. > > Would there be a point in a central, maybe self maintained dns based > domain list where organisations can register domains as 'requiring' > dkim/spf? Sort of an explicit opt-in for organisations who really know > they have everything correctly set-up. That's what DMARC is for.
