IETF Logo Mail Archive

Re: [dmarc-ietf] draft-crocker-dmarc-author-00 ?

"Kurt Andersen (b)" <kboth@drkurt.com> Fri, 14 August 2020 15:13 UTC

Return-Path: <kurta@drkurt.com>
X-Original-To: dmarc@ietfa.amsl.com
Delivered-To: dmarc@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id E26A53A0C88 for <dmarc@ietfa.amsl.com>; Fri, 14 Aug 2020 08:13:11 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.098
X-Spam-Level:
X-Spam-Status: No, score=-2.098 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=unavailable autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=drkurt.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Wv8RqdhWS5kn for <dmarc@ietfa.amsl.com>; Fri, 14 Aug 2020 08:13:10 -0700 (PDT)
Received: from mail-io1-xd36.google.com (mail-io1-xd36.google.com [IPv6:2607:f8b0:4864:20::d36]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 2661B3A0EE3 for <dmarc@ietf.org>; Fri, 14 Aug 2020 08:13:09 -0700 (PDT)
Received: by mail-io1-xd36.google.com with SMTP id a5so10988709ioa.13 for <dmarc@ietf.org>; Fri, 14 Aug 2020 08:13:09 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=drkurt.com; s=20130612; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=a9xITa87XrsDUF7Yu/MrPTQEtBrlSIvpB73J7cgCofA=; b=DC8vwb7TmztTJBHn/B5m0cZQUt/F/15SN6IY41rGyvxpE/qC2iD6y0hi29NRC2MtOg z2t09CY/H5+ufc08cYhgrEc0MsU3Qd0VkKgBOg02pwKayv8yXWhsRMaipDsCgf9EXojh phvZkdNUrEyYjpwJz8/Wi3k9AeYw61SpguBa8=
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=a9xITa87XrsDUF7Yu/MrPTQEtBrlSIvpB73J7cgCofA=; b=YfLvz2T9e5rGGrlyUdiNVCa7qaylM+paj/iZQhwo/BbAgBwP4BrOs7RJQdM/Pz8oa2 V3Z8Nmi+puHjZu9rzwmRtTsk5m0zeVNIc5hNIpOlHW1PyfSjB07fERhvb1ZJWxap+32M QDSy4dmBv4qe8Q+sM8tlLAPeRsmrjiQOf1t0pCgFnZT8aE27kv6/PN7thipPD/KeO22J gk49/4R0+L/PRYN4pKBl4qFSON//hRm3YxHawTd+RnzAgkYI/MHel33O7yYOijTY6JLJ /McD+Tyto5H1lw2b200quM48bn1L6j2YJiNOvMwyb+nrWixrnbj6wGDZAQRWkDViWjKN Jw/Q==
X-Gm-Message-State: AOAM531TEdQbTF1GvzDTviM7Vo/sZZXzccrYkIGtGei/rea3IttdLNOm fpBrEdT7i9DDp60lS2SUu6iO/HuvnRu2aqJWlc9RmA==
X-Google-Smtp-Source: ABdhPJyjU5LaL1azRdDOk3yCLSymTmoMcYSljnQ0KRVaVFVzcni5vmfP7VRnhKOjwkuOWpKNZjbQeavTPsXkJrtTPQc=
X-Received: by 2002:a5d:9344:: with SMTP id i4mr2504313ioo.106.1597417989113; Fri, 14 Aug 2020 08:13:09 -0700 (PDT)
MIME-Version: 1.0
References: <20200811034740.BA1831E7FDBF@ary.local> <0c8afc68-bc51-702a-c794-610b2d355836@dcrocker.net> <83a8e95f-d85d-634e-0c93-eb2ddab2c69d@wordtothewise.com> <99810a58-3809-bfd2-3571-bac54430f9e8@tana.it> <CAOPP4WHWoVkA+ZWZ+2AFnH8_nKBxO+t3Z4trz347JV0fsEy83Q@mail.gmail.com> <003501d671b9$467c0670$d3741350$@bayviewphysicians.com> <CAOPP4WG0Az02DJ0TvWfnaWSfCjnqW3tLh3TTGOJu4BC4zNuQBA@mail.gmail.com> <CAJ4XoYeQxgu5Yj+Aag9kYY3HXMrXV8DPNczXP5L_BLoVaAv0Gg@mail.gmail.com>
In-Reply-To: <CAJ4XoYeQxgu5Yj+Aag9kYY3HXMrXV8DPNczXP5L_BLoVaAv0Gg@mail.gmail.com>
From: "Kurt Andersen (b)" <kboth@drkurt.com>
Date: Fri, 14 Aug 2020 08:12:32 -0700
Message-ID: <CABuGu1qFWJNOjV9Fd=tB8Nzod5rw7GgY0OeS3cHgfMDGoZGYWg@mail.gmail.com>
To: Dotzero <dotzero@gmail.com>
Cc: Neil Anuskiewicz <neil@marmot-tech.com>, IETF DMARC WG <dmarc@ietf.org>, Doug Foster <fosterd=40bayviewphysicians.com@dmarc.ietf.org>
Content-Type: multipart/alternative; boundary="000000000000cca90005acd7dbef"
Archived-At: <https://mailarchive.ietf.org/arch/msg/dmarc/3jEOI8tmjOv4Daw2b3C3oPsGxPA>
Subject: Re: [dmarc-ietf] draft-crocker-dmarc-author-00 ?
X-BeenThere: dmarc@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "Domain-based Message Authentication, Reporting, and Compliance \(DMARC\)" <dmarc.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dmarc>, <mailto:dmarc-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dmarc/>
List-Post: <mailto:dmarc@ietf.org>
List-Help: <mailto:dmarc-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dmarc>, <mailto:dmarc-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 14 Aug 2020 15:13:12 -0000

On Fri, Aug 14, 2020 at 7:31 AM Dotzero <dotzero@gmail.com> wrote:

>
> I've been involved in setting up DMARC with a policy of p=reject for
> somewhere North of 6,000 domains. As a sending domain, the heavy lifting is
> in getting buy-in across the organization that it is a worthwhile effort,
> getting control of your organization's mail flows and ensuring policies and
> procedures are communicated and followed. For complex environments there
> may need to be some automation required for creating and maintaining
> private/public key pairs and DNS records but that is much more
> straightforward than the aforementioned heavy lifting.
>

Also note that said "heavy lifting" is not a one time expenditure of
effort. Having hoisted the weight bar above your head, it requires
organizational will and ongoing knowledge to stick to the higher bar week
in and week out. Entropy is never your friend in an organizational security
context. Neither are acquisitions :-)

--Kurt

v2.23.0 | Report a Bug | By Email