2) the user B could alter the .forward such that forwarded messages
are reinjected with B's address in the return-path. For
example, a .forward that was previously "C(_at_)example(_dot_)org" might
now read "|/usr/sbin/sendmail -oi C(_at_)example(_dot_)org"
This is a really bad idea, BTW, unless I'm misunderstanding what
you're suggesting.
If C bounces the message, the bounce will be directed at B. B's
.forward will then forward the bounce to C, who will then bounce it
back to B. Ad inifinitum.
This creates a bounce loop that doesn't terminate. The hop count
doesn't protect you, because each bounce is a new message. The
Auto-Submitted/AutoSubmitted headers would protect you, but they're
not generally used yet (are they even standardized yet?)
-roy
-------
Sender Permitted From: http://spf.pobox.com/
Archives at http://archives.listbox.com/spf-discuss/current/
Latest draft at http://spf.pobox.com/draft-mengwong-spf-02.txt
To unsubscribe, change your address, or temporarily deactivate your
subscription,
please go to
http://v2.listbox.com/member/?listname(_at_)©#�«Mo\¯HÝÜîU;±¤Ö¤Íµø�?¡