On 3/27/2004 11:26 AM, Gordon Fecyk sent forth electrons to convey:
...
Greeting card sites, "refer a friend" sites and the like can still be
accountable, at least for themselves if not for those who use the site. They
were hit by spammers really early in their existence (Blue Mountain Arts
appearing on the RBL, for instance) and have learned from their mistakes.
It might be a stretch to assume that such enterprises will wish to be
accountable, but it's a stretch I'm prepared to make to accept mail from
them. If they want to be held accountable they will do what they can to
prevent abuse of their system. Based on that, if they can use their own
identity in RFC2821 MAIL FROM or HELO or both, I won't mind if the RFC2822
From line is different. As was pointed out by many people myself included,
mailing lists do this already and many of us believe this behaviour is still
possible with a scheme developed here.
I don't feel that this actually successfully argues againstRFC2822 From
checks.
It successfully argues against RFC2822 From checks that fail being
always considered conclusive spamsign, but that is all.
I explained in my previous post where such a failure should be
considered conclusive spamsign, and in a post before that how
the check's success is useful as a hamsign.