I have somehow only just discovered that Gmail, Apple and Yahoo are introducing, or have recently introduced, DMARC requirements for senders.
See for exmaple https://www.proofpoint.com/us/blog/email-and-cloud-threats/google-and-yahoo-set-new-email-authentication-requirements
Can anyone recommend good mailing lists or other resources for people who look after email servers/services? It takes up little of my work, but an area of interest.
I am subscribed to mailop (though don't read it as often as I
should!) but from a mail search there doesn't seem to have been
anything there about this recently.
On Fri, Mar 01, 2024 at 01:42:07AM +0000, Gareth Evans wrote:
I have somehow only just discovered that Gmail, Apple and Yahoo are introducing, or have recently introduced, DMARC requirements for senders.
See for exmaple
https://www.proofpoint.com/us/blog/email-and-cloud-threats/google-and-yahoo-set-new-email-authentication-requirements
Can anyone recommend good mailing lists or other resources for people who look after email servers/services? It takes up little of my work, but an area of interest.
Me too :)
ISTR that there was a mention of such a thing here in debian-user@,
but my search-fu hasn't been up to the challenge of finding it.
OTOH, my memory could be playing games on me.
Cheers
--
t
https://list.mailop.org/listinfo/mailop
And the main page
https://www.mailop.org/
I have somehow only just discovered that Gmail, Apple and Yahoo
are introducing, or have recently introduced, DMARC requirements
for senders.
I am subscribed to mailop (though don't read it as often as I
should!) but from a mail search there doesn't seem to have been
anything there about this recently.
Just for the record, the Authentication part of DMARC is done with
SPF and/or DKIM; the large mailbox providers actually (since 1 Feb)
require *either* SPF *or* DKIM passes, or both if you are a bulk
sender (thousands of mails per day).
DMARC itself remains optional (but recommended) and once taken
separately from SPF and DKIM is mainly a reporting mechanism.
Hi,
On Fri, Mar 01, 2024 at 11:00:13AM +0000, Gareth Evans wrote:
"Don’t impersonate Gmail From: headers. Gmail will begin using a DMARC quarantine enforcement policy, and impersonating Gmail From: headers might impact your email delivery."
Talks about gmail's own use of DMARC, not the sender's.
Can a "DMARC quarantine enforcement policy" operate, if the sender
doesn't use DMARC? This idea seems to relate more to SPF than
anything?
gmail's own policy is quarantine so if you send from somewhere that
isn't gmail, while pretending to be from a gmail property, gmail
indicates that it wishes¹ for your email to be quarantined by the
recipient.
Thanks,.
Andy
¹ Even receiving sites that process DMARC sometimes don't carry out
the DMARC author's wishes. As a common example that most of us
will have seen, Mailman mailing lists will often just selectively
rewrite the headers.
--
https://bitfolk.com/ -- No-nonsense VPS hosting
https://support.google.com/a/answer/81126?hl=en#requirements-5k&zippy=%2Crequirements-for-sending-or-more-messages-per-day%2Crequirements-for-all-senders
mentions DMARC in requirements for all senders:
"Don’t impersonate Gmail From: headers. Gmail will begin using a DMARC quarantine enforcement policy, and impersonating Gmail From: headers might impact your email delivery."
Can a "DMARC quarantine enforcement policy" operate, if the sender
doesn't use DMARC? This idea seems to relate more to SPF than
anything?
This idea seems to relate more to SPF than anything?
Sysop: | Keyop |
---|---|
Location: | Huddersfield, West Yorkshire, UK |
Users: | 297 |
Nodes: | 16 (2 / 14) |
Uptime: | 32:08:26 |
Calls: | 6,669 |
Calls today: | 1 |
Files: | 12,216 |
Messages: | 5,338,219 |