Feature req: check recipient address for security requirements like DMARC before accepting it

[rafalkrupinski]

I'm relatively new to anonaddy and I've been very happy about it so far.

Today I tried for the first time to reply to a message received via AA and I got response about missing DMARC. I don't control the server so I'm unable to fix it, short of changing the provider.

I'm surprised by this bc there's no mention of this requirement anywhere other than other bug reports here in GH.

Would be great if

• the technical requirements were easily available before user uses the service,
• AA automatically checked any requirements (SPF/DMARC are publicly available DNS entries, easy to check and cache),
• the UI allowed to accept such emails if the domain doesn't support DMARC.
  (pick one or more 😉)

Cheers!

[rafalkrupinski]

Also, I see DMARC isn't very popular feature in email servers:
https://en.wikipedia.org/wiki/Comparison_of_mail_servers#Antispam_features
It actually looks like hardly anyone has ever heard of it...

[willbrowningme]

Thanks for the feedback, I agree. Perhaps simply a notification email or message that states "You may not be able to reply or send from aliases using this recipient as it is missing a required DMARC policy".