Article may be outdated

This article is 13 days old. Some details may have changed since publication.

Hacker News·6 min read·hard

Why DMARC's new "NP" tag can fail with DNSSEC

M
matteocontrini
Why DMARC's new "NP" tag can fail with DNSSEC
AI Summary

A new DMARC specification update introduces an 'np' tag for non-existent subdomains, but it conflicts with existing DNSSEC standards. This incompatibility creates potential security gaps for organizations using DNSSEC with major providers.

Matteo 18 min. read The recently updated DMARC specification, published as RFC 9989, introduces the new np tag. Its purpose is to specify the policy that receivers should apply when the sender domain is a non-existent subdomain of the domain where the DMARC record is published.

Continue reading on Headlinne

Create a free account to read the full article.

Read full article →
technologybusiness

Get the full story

Sign up for Headlinne to unlock AI insights, political bias analysis, and your personalized news feed.

Create free account

Already have an account? Sign in