spf-discuss
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: SPF reporting mechanism: email restrictions

2003-10-26 12:46:46
from [Richard Pitt] [Permanent Link] 
On Sun, 2003-10-26 at 10:53, Meng Weng Wong wrote:

On Sun, Oct 26, 2003 at 10:40:26AM -0800, Richard Pitt wrote:
| 
| Hive off the "ns1" and you have belcarra.com - lookup that one for it's
| SPF record and send the report there if a flag in the SPF record in DNS
| for the customer domain says to do it.
| 
| So... you probably should restrict the notice to the domain and
| optionally, after checking the reverse on their DNS addresses, to their
| DNS hosts (and there actually could be several if they have secondaries
| on other ISP's networks)
| 

If I understand you, this means SPF clients will have to traverse a
graph of DNS relationships, enumerate the hosts and domains within N
degrees-of-separation, and build a trust metric for the report argument
based on the results.

This can be done, but is there an easier way to accomplish the same
result?  What if DNS/mail providers add a special subdomain
postmaster.customerdomain.com that routes mail to the service provider
instead of the customer?


Hmmm... maybe I'm missing something here - the lookup/qualification only
has to be done once per "reset" of the MTA for each domain (or maybe
each address in the domain?) the MTA handles mail for. On some MTAs this
means once because they only deal in one domain and all info necessary
would be in that domain's DNS record. For some (ours for instance) it
might be quite a few, but that is the hazard of doing virtual mail
routing ;)

richard



-------
Sender Permitted From: http://spf.pobox.com/
Archives at http://archives.listbox.com/spf-discuss/current/
Latest draft at http://spf.pobox.com/draft-mengwong-spf-02.txt
To unsubscribe, change your address, or temporarily deactivate your 
subscription, 
please go to 
http://v2.listbox.com/member/?listname(_at_)©#«Mo\¯HÝÜîU;±¤Ö¤Íµø?¡

-- 
Richard C. Pitt                 C.E.O. Belcarra Technologies
richard(_at_)belcarra(_dot_)com         direct: 604-644-9265    www.belcarra.com
Embedded Systems Communications Specialists - USB, ATM, LAN/WAN, Wireless
USB for Linux, Windows, MAC OS/X - USBLAN (tm) - drivers for USB mass storage
PGP Fingerprint: BA31 64B9 172D AF08 B174  B5BB 8E36 E56C F46D D371

-------
Sender Permitted From: http://spf.pobox.com/
Archives at http://archives.listbox.com/spf-discuss/current/
Latest draft at http://spf.pobox.com/draft-mengwong-spf-02.txt
To unsubscribe, change your address, or temporarily deactivate your 
subscription, 
please go to 
http://v2.listbox.com/member/?listname(_at_)©#«Mo\¯HÝÜîU;±¤Ö¤Íµø?¡
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: SPF reporting mechanism: email restrictions, Meng Weng Wong
Next by Date:  Re: SPF reporting mechanism: email restrictions, Meng Weng Wong
Previous by Thread:  Re: SPF reporting mechanism: email restrictions, Meng Weng Wong
Next by Thread:  Re: SPF reporting mechanism: email restrictions, Meng Weng Wong
Indexes:  [Date] [Thread] [Top] [All Lists]