ietf-mxcomp
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

RE: Adoption of MARID, SPF and alternatives and thoughts on cost

2004-05-12 21:58:18
from [Michel Py] [Permanent Link] 


Matthew Elvey wrote:
You are one of the small minority of SPF
adopters who's been able to publish a -all.



wayne wrote:
Uh, the vast majority of SPF records that
I know of publish -all.
(Anyone have stats?)


I think there is a gut perception issue about it; I have no stats, and I
should have. Guilty as charged. Nevertheless, since I am too lazy to
have stats I do manual queries, and the last two I queried (that had an
SPF record) were:
 
aol.com text = "v=spf1 ip4:152.163.225.0/24 ip4:205.188.139.0/24
ip4:205.188.144.0/24 ip4:205.188.156.0/23 ip4:205.188.159.0/24
ip4:64.12.136.0/23 ip4:64.12.138.0/24 ptr:mx.aol.com ?all"

symantec.com text = "v=spf1 ip4:198.6.49.0/24 ip4:65.125.29.0/25
ip4:206.204.57.47 ?all"

So, bozos such as myself might have a tendency to think something along
the lines of "how good is SPF if AOL can't publish a -all" because IMHO
the only way I would refuse inbound email is a straight fail, not a soft
fail or a neutral.

If perception == reality, the fact that AOL does not have a -all means
nobody does (this is exaggerated, of course, but since AOL has
historically been one of the main domains that have successfully used by
spammers as a source address....)

I have read and understood the charter of the WG, nevertheless there are
plenty of people such as myself that look at MARID and/or SPF as cheap
ways to curb spam and/or phishing schemes, and a soft fail or a neutral
does not do any good to me.



The ten most popular SPF records are:
1  1097 v=spf1 mx -all 
2   804 v=spf1 ip4:a.b.c.d/32 ip4:a.b.c.d/32 a ptr mx -all 
3   463 v=spf1 a mx ptr -all 
4   429 v=spf1 a mx -all 
5   325 v=spf1 -all 
6   306 v=spf1 a -all 
7   171 v=spf1 +exists:CL.%{i}.FR.%{s}.HE.%{h}.null.spf.example.com

-all 

8   131 v=spf1 include:example.org ~all 
9   131 v=spf1 a mx ?all 
10  130 v=spf1 ?all 


Interesting. I picked the #4 most popular.

arneill-py.sacramento.ca.us text = "v=spf1 a mx -all"


To some extent I think that #1 - #4 are basically in the same spirit
(the difference being the setups are not the same), and this makes for
the vast majority of SPF records.

Michel.
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  RHSBL scalability (affects MARID proposals)., Matthew Elvey
Next by Date:  RE: Adoption of MARID, SPF and alternatives and thoughts on cost, Neil Brown
Previous by Thread:  RE: Do it yourself CSV, Hallam-Baker, Phillip
Next by Thread:  RE: Adoption of MARID, SPF and alternatives and thoughts on cost, Neil Brown
Indexes:  [Date] [Thread] [Top] [All Lists]