Re: [dmarc-ietf] Discussion: Removal of validation for external destinations (Ticket #76)

Alessandro Vesely <> Sun, 06 December 2020 12:06 UTC

Return-Path: <>
Received: from localhost (localhost []) by (Postfix) with ESMTP id 930093A0CD4 for <>; Sun, 6 Dec 2020 04:06:18 -0800 (PST)
X-Virus-Scanned: amavisd-new at
X-Spam-Flag: NO
X-Spam-Score: -2.12
X-Spam-Status: No, score=-2.12 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, NICE_REPLY_A=-0.001, RCVD_IN_MSPIKE_H3=-0.01, RCVD_IN_MSPIKE_WL=-0.01, SPF_PASS=-0.001, SPOOF_COM2OTH=0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: (amavisd-new); dkim=pass (1152-bit key)
Received: from ([]) by localhost ( []) (amavisd-new, port 10024) with ESMTP id nSa8OgDvcG-v for <>; Sun, 6 Dec 2020 04:06:16 -0800 (PST)
Received: from ( []) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by (Postfix) with ESMTPS id 7C7843A0CD5 for <>; Sun, 6 Dec 2020 04:06:15 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;; s=delta; t=1607256373; bh=f4qTKLaRukB0C3cDcaQlqxTZEtuuWsGZNcuIKKwJ2rA=; l=1554; h=To:References:From:Date:In-Reply-To; b=BxYpxCxrj2SWglq4TNY7xYqgJ7M9udOcbggBzZcJ4wQ+z+g7Xd/YkWZRLbnXEzmwk S4U0QLuVI8UKCZP1PovPrXnet8IVBFFBgdZpviB8+Scb3+b/ZHgorZTBHct0TGmWcd 1lRD0jlTXJSmPooS3WuaoakgAEewmTGRdKq8Z19CyDUVld0q4f1LOvX7y2HKA
Authentication-Results:; auth=pass (details omitted)
Original-From: Alessandro Vesely <>
Received: from [] (pcale.tana []) (AUTH: CRAM-MD5 uXDGrn@SYT0/k, TLS: TLS1.3, 128bits, ECDHE_RSA_AES_128_GCM_SHA256) by with ESMTPSA id 00000000005DC056.000000005FCCC935.00003EAB; Sun, 06 Dec 2020 13:06:13 +0100
References: <>
From: Alessandro Vesely <>
Message-ID: <>
Date: Sun, 6 Dec 2020 13:06:12 +0100
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:68.0) Gecko/20100101 Thunderbird/68.12.0
MIME-Version: 1.0
In-Reply-To: <>
Content-Type: text/plain; charset=us-ascii
Content-Language: en-US
Content-Transfer-Encoding: 7bit
Archived-At: <>
Subject: Re: [dmarc-ietf] Discussion: Removal of validation for external destinations (Ticket #76)
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "Domain-based Message Authentication, Reporting, and Compliance \(DMARC\)" <>
List-Unsubscribe: <>, <>
List-Archive: <>
List-Post: <>
List-Help: <>
List-Subscribe: <>, <>
X-List-Received-Date: Sun, 06 Dec 2020 12:06:19 -0000

On Sat 05/Dec/2020 14:51:52 +0100 Brotman, Alex wrote:
> There's currently a ticket that suggests that the requirement for external validation be removed.  Today, if has an RUA that points at, the latter must create a record as such:
> TXT "v=DMARC1"

Actually, the record can also be: TXT "v=DMARC1;"

or even, considering a parallel thread: TXT "v=DMARC1;, /"

That way, external services have the ability to control or suspend  their service.  I think this is an essential requirement.  Let's keep it.

> The original thought was that a bad actor could overwhelm a target with unrequested reports.  It seems in reality, most report generators only send once per day.

Once-per-day has to be amended.  See ticket #71.

> Additionally, there appear to be some generators who ignore the absence of these records.

Aggregate reports are often tagged as spam anyway, but when sent in violation of the spec such tagging is certainly deserved.


Why don't you refer to either of the drafts we're editing:

BTW, this duplication is worth yet another ticket.