spf-discuss
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: Eric Allman comments on SPF

2003-12-04 13:47:08
from [Justin Mason] [Permanent Link] 
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1


B. Johannessen writes:

On Wed, 2003-12-03 at 19:36, Meng Weng Wong wrote:

Eric Allman just emailed me his thoughts on the draft-02.9.txt.

He doesn't like the complexity of the a, mx, ptr, etc directives;
he feels that the only directives that should be there are ip4 and ip6.


I for one would have to agree with this. I don't think there's any
way the current proposal will ever be accepted. It's to complex.

If you think the current syntax is the easiest way for domain admins
to express designated senders, create an application that converts
from this syntax to BIND zone file format (and maybe the format of
a few other DNS content servers).


It should be noted that such an app already existed on spf.pobox.com, and
was very easy to use.   I have to agree that using a script, or even a
webpage like that, to *generate* simple records usable in the leading DNS
server zonefiles, would be preferred.   

I agree, FWIW.  The current spec is quite complex, with places
where recursing lookups are required (include, exec, mx, ptr etc.).

On top of the complexity of implementing a client to implement lookups per
the spec, there's also the danger that an unforeseen combination of rules
in an SPF record will result in timeouts or other issues that can cause
runtime problems in an implementing MTA or scanner.  So the complexity of
the spec will lead to complexity of code.

It strikes me that a record-generating app, which takes the complex
concepts of "mx", "ptr" etc. and generates simple records, would reduce
this danger.

- --j.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.2 (GNU/Linux)
Comment: Exmh CVS

iD8DBQE/z51MQTcbUG5Y7woRAnZkAJ47wbpikOsR4cpBeHYHyKX8wJd9TwCggIP6
uQ/avBJUSS44EE3NhP+QPVY=
=MGAH
-----END PGP SIGNATURE-----

-------
Sender Permitted From: http://spf.pobox.com/
Archives at http://archives.listbox.com/spf-discuss/current/
Latest draft at http://spf.pobox.com/draft-mengwong-spf-02.9.txt
To unsubscribe, change your address, or temporarily deactivate your 
subscription, 
please go to 
http://v2.listbox.com/member/?listname(_at_)©#«Mo\¯HÝÜîU;±¤Ö¤Íµø?¡
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: New spfd based Exim ACL, Meng Weng Wong
Next by Date:  other mechanisms, Meng Weng Wong
Previous by Thread:  Re: Eric Allman comments on SPF, B. Johannessen
Next by Thread:  "a,mx,ptr", Meng Weng Wong
Indexes:  [Date] [Thread] [Top] [All Lists]