On Wednesday 07 June 2006 13:05,
Matthew(_dot_)van(_dot_)Eerde(_at_)hbinc(_dot_)com wrote:
Scott Kitterman wrote:
A DNS provider that makes arbitrary changes to your DNS is inherently
unreliable and should be ditched.
I wonder what perfect behavior would be... I'm designing an interface in my
head.
I suppose one way would be to present the customer with this kind of
dialog: ( ) is a radio button
(o) is a selected radio button
Email settings for domain: example.com
(o) example.com sends no mail
( ) example.com sends mail
( ) example.com sends mail from... [ Advanced ]
"no mail" should be the default... v=spf1 -all
the basic "sends mail" should result in no SPF record at all
the Advanced button should walk through some kind of SPF setup wizard, or
allow manual editing of the SPF record, or whatever
The key point is that whatever is published MUST be based on domain owner
input. This is a good start.
But, I think that there are a lot of complexities that are difficult to
capture in a tool (this is pretty much why one doesn't exist IMO).
SPF is a tool for the domain owner. I'm sure that these providers that
publish arbitrary records believe that they are doing a good thing, but they
are not. "v=spf1 -all" for a domain confirmed to send no mail is about the
only one that's safe.
Scott K
-------
Sender Policy Framework: http://www.openspf.org/
Archives at http://archives.listbox.com/spf-discuss/current/
To unsubscribe, change your address, or temporarily deactivate your
subscription,
please go to
http://v2.listbox.com/member/?listname=spf-discuss(_at_)v2(_dot_)listbox(_dot_)com