Opened 4 years ago

Last modified 12 months ago

#5 new defect

Definition of "pct" parameter

Reported by: superuser@… Owned by:
Priority: major Milestone: Deliverable #3 (changes to DMARC base spec + DMARC Usage Guide
Component: dmarc-future-notes Version:
Severity: - Keywords:
Cc:

Description

Message-ID: <54AB056C.2090101@…>
Date: Mon, 05 Jan 2015 13:43:08 -0800
From: Jim Fenton <fenton@…>
To: "dmarc@…" <dmarc@…>
Subject: [dmarc-ietf] Comments on dmarc-base-09

[...]
Section 5.3, definition of pct: parameter: "However, this MUST NOT be
applied to the DMARC-generated reports, all of which must be sent and
received unhindered." This is strong normative language, but there is no
procedure specified anywhere for how to identify a DMARC-generated
report in order to apply this requirement. Consider the possibility that
bad actors may try to craft messages to look like DMARC reports.
[...]

Change History (1)

comment:1 Changed 12 months ago by kboth+ietf@…

  • Component set to dmarc-future-notes
Note: See TracTickets for help on using tickets.