On Mon, Apr 11, 2005 at 11:37:05PM -0700, George Ou wrote:
* Start banning all non-SPF compliant domains within a certain deadline
which would effectively make port 25 blocking moot.
Sorry, this is not how SPF works.
Nothing prevents a spammer from getting throwaway domains, adding TTL 300
SPF records and using some 10000 cracked hosts on broadband access to spam.
The .DE TLD alone has currently more than 7 million domains. According to SPF
activists 700,000 domains worldwide now use SPF. This is less than 0.1% of all
domains worldwide. Happy deployment.
SPF is NOT an anti-spam method, it is a method for accreditation. It will
not stop spammers abusing cracked hosts on broadband access. Port 25 blocks will
do this. MTAMARK can help do this without port 25 blocking.
Everything that utilizes the forward domain, which is under full control of the
spammers, will be rather useless unless we have widely deployed Accreditation
Services and these will have tons of other problems associated with.. This is
the
reason why even CSV (Certified Server Validation) will be of minor success.
\Maex
--
SpaceNet AG | Joseph-Dollinger-Bogen 14 | Fon: +49 (89) 32356-0
Research & Development | D-80807 Muenchen | Fax: +49 (89) 32356-299
"The security, stability and reliability of a computer system is reciprocally
proportional to the amount of vacuity between the ears of the admin"
_______________________________________________
Asrg mailing list
Asrg(_at_)ietf(_dot_)org
https://www1.ietf.org/mailman/listinfo/asrg