ietf-mxcomp
[Top] [All Lists]

Re: Is the back door open?

2004-07-28 11:22:19

On Wed, 28 Jul 2004, Douglas Otis wrote:

Although CSV could help make these intra-domain configurations safer,
the problem was about how a resulting bounce is handled.  Remember,
Sender-ID ignores the RFC 2821 MAIL FROM.  The defense against the
bounce that once justified publishing these records has been removed by
the PRA algorithm.

Doesn't protection against the bounce using SPF-Classic require 100%
adoption to make it work?  Wouldn't BATV or some other site-local
protection against joe-jobbing have a more direct impact on this problem
(which, I will note, is not necessarily the problem this group was
chartered to address).

-Rand


<Prev in Thread] Current Thread [Next in Thread>