On Sun, 12 Nov 2006, Alex van den Bogaerdt wrote:
OTOH, if my remarks are taken into account, there will be a list of know
forwarders (known, because the customer altered this list). SPF is not
processed, and the receiver could still look at "To" etc. For all other
incoming email, SPF works as usual, rejecting forgeries.
I believe the proposal was to use DNS to tell 3rd party mail providers
which forwarders to whitelist. The mail service would lookup the
RPF record for the recipient domain (which is not owned by the 3rd party
mail service - they just run IMAP and are pointed to by MX), and not
check SPF for the listed IPs.
This is actually a good idea, and avoids mail services having to
create web pages to configure non-SRS forwarders. It would be
ideal for vanity domains.
However, is part of the mail service, and doesn't have to be a public
standard to be effective. (Although it would avoid reinventing the
wheel to standardize.)
Stuart D. Gathman <stuart(_at_)bmsi(_dot_)com>
Business Management Systems Inc. Phone: 703 591-0911 Fax: 703 591-6154
"Confutatis maledictis, flammis acribus addictis" - background song for
a Microsoft sponsored "Where do you want to go from here?" commercial.
Sender Policy Framework: http://www.openspf.org/
Archives at http://archives.listbox.com/spf-discuss/current/
To unsubscribe, change your address, or temporarily deactivate your
please go to http://v2.listbox.com/member/?list_id=735