Jon Kyme wrote:
http://spf.pobox.com/draft-mengwong-sender-rewrite-01.txt
[observations snipped]
There are some concerns with the length limits of certain RFC 2822
headers such as "Return Path" which might cause problems with sender
rewriting.
Yes, these concerns are addressed by the use of some max-length "cookie"
rather than an ever-growing (with each forward) verp-like string.
Of course, this loses the sender string's "trace"
(which is still available in the headers - so no real loss ?)
but also limits the risk of exploitation via an explicit return-path
"routing".
It would require the forwarder to maintain some data,
which will have privacy/security implications.
Some kind of envelope modification (i.e. more than just RCPT) is probably
required for happy forwarding in an environment made unfriendly by LMAP.
It's not a big deal really, but it can't be ignored.
--
_______________________________________________
Asrg mailing list
Asrg(_at_)ietf(_dot_)org
https://www1.ietf.org/mailman/listinfo/asrg