ietf-mailsig
[Top] [All Lists]

Re: Web pages for MASS effort

2005-01-09 19:41:23

If on the other hand a VeriSign mailer is saying HELO
mail.cybercash.com or whatever it is unlikely to cause problems.

Unless the mailer's name is really mail17.cybercash.com.  Tony
collected some stats and a remarkably large number of legitimate mail
clients HELO as a name that is in an appropriate domain but the A
record for that name doesn't point back to the mail host.  We designed
CSV so it's easiest to set up if the A records are right, but it's
only slightly harder if they're not, and it can still tell the
difference betwenn a Hotmail host HELO'ing as hotmail.com and some
random zombie doing so.

If you really think this is necessary then the reasonable way to go
about deployment is to propose an approriate SPF context flag.

The semantics of CSV are unrelated to those of SPF.  There's no
advantage to combining them in one bloated record.

R's,
John


<Prev in Thread] Current Thread [Next in Thread>