[dmarc-discuss] Re-verifying external report destinations

Michael michael at lists.authresults.com
Mon Nov 18 13:17:58 PST 2019


Google and a few others seem to ignore the authorization txt record. 
I've had them send dmarc reports for domains where I set up a dmarc 
record, but forgot the authorization record.


On 2019-11-08 11:03 am, Ken O'Driscoll via dmarc-discuss wrote:
> Quick question:
> 
> Is is common for providers to re-verify external report email addresses
> from time to time?
> 
> I ask because a few months ago we did a clean-up and deleted a few
> authorisation TXTs for former clients who still had our report email
> address configured in their record.
> 
> I've just noticed that some providers, including a few large ones 
> (Google,
> LinkedIn and Rackspace) are still sending DMARC reports for some 
> domains
> despite the lack of corresponding verifying records for several months.
> 
> Is what I'm seeing normal behaviour?
> 
> And if the answer is yes, is rejecting the messages what others do when
> faced with an uncooperative former client?
> 
> Thanks,
> 
> Ken.
> 
> _______________________________________________
> dmarc-discuss mailing list
> dmarc-discuss at dmarc.org
> http://www.dmarc.org/mailman/listinfo/dmarc-discuss
> 
> NOTE: Participating in this list means you agree to the DMARC Note
> Well terms (http://www.dmarc.org/note_well.html)


More information about the dmarc-discuss mailing list