Re: A Question about the pobox.com wizard

So, that begs the question: when it suggests the records

  'mail.ifokr.org:v=spf1 a -all:3600
  'puddle155.drizzle.com:v=spf1 a -all:3600

...

If either machine bounces a message the MAIL FROM: will be the null sender:
'<>'.

Obviously we can't do an spf lookup on that, so spf falls back onto the smtp
HELO string, which would be "mail.ifokr.org" or "puddle155.drizzle.com".

To stop spammers pretending everything they send is a bounce these hostnames
need spf records too, the "v=spf1 a -all" just says 'any A record from
"mail.ifokr.org" is allowed to claim to be "mail.ifokr.org" in any email
they send'.


And voila, all my questions about SPF are answered.  I'm digging it.

--
Brian Hatch                  What do you call a firewall
   Systems and                that proxies HTTP, SMTP,
   Security Engineer          ftp, telnet, and ping?
http://www.ifokr.org/bri/    A router.

Every message PGP signed

-------
Sender Permitted From: http://spf.pobox.com/
Archives at http://archives.listbox.com/spf-discuss/current/
Latest draft at http://spf.pobox.com/draft-mengwong-spf-02.9.4.txt
To unsubscribe, change your address, or temporarily deactivate your 
subscription, 
please go to 
http://v2.listbox.com/member/?listname(_at_)½§ÅvÂ¼ð¦¾Øß´ëù1Ií-»Fqx(_dot_)com

pgpZfYv94v1dC.pgp
Description: PGP signature

<Prev in Thread]

Current Thread

[Next in Thread>

Previous by Date:

RE: Maybe simple question, Vivien M.

Next by Date:

RE: Maybe simple question, Vivien M.

Previous by Thread:

Re: A Question about the pobox.com wizard, Jasper Wallace

Next by Thread:

Re: A Question about the pobox.com wizard, Kevin Reed

Indexes:

[Date] [Thread] [Top] [All Lists]