On 11/18/04 10:44 AM, "wayne" <wayne(_at_)midwestcs(_dot_)com> wrote:
Now, the folks involved with CSV (Dave C, John L, Doug O, etc.) claim
that checking the HELO domain against SPF records isn't as good as
doing CSV checks. Despite having listened to them explain this, and
read their specs several times, for the life of me, I can't see why
SPF checks against the HELO domain isn't just as good.
Can you explain the difference to me?
Is this difference significant enough to justify having all your
whitelisted domains implement two very similar systems?
I believe they are thinking that an email address domain (right side of the
@ sign) is a different animal than a HELO domain. I tend to agree but also
am hoping that in some cases it may be the same thing for most MTAs.
Director, AntiSpam Operations
America Online Mail Operations