ietf-mxcomp
[Top] [All Lists]

Re: Is the back door open?

2004-07-28 10:11:26


On Jul 28, 2004, at 12:11 PM, Ryan Ordway wrote:
        fleeblebur.org, let's say, has 3 MX hosts,
ralph.fleeblebur.org with a priority of 0, fred.fleeblebur.org and
bob.fleeblebur.org both with a priority of 10. ralph
may have a valid user list, being the primary MX host
which will handle the majority of mail. fred and bob
may not, being simply configured to spool mail until
ralph is back online.

        In this scenario, now that a given message is
coming from trusted hosts, will Sender-ID be effective?

Are you saying that ralph cannot trust the data coming from fred and bob? If so, then there is a larger problem here.

CSV could help this, but its utility here is allowing ralph to convert its IP-based whitelist to a domain-based whitelist. I assume that CSV is being designed for inter-domain MTA authentication/authorization because intra-domain problems can be solved in other ways (some that need no standards work and others that are already standardized).

Regardless, what is stopping ralph, fred, and bob from doing Sender-ID or SPF checks?

-andy


<Prev in Thread] Current Thread [Next in Thread>