----- Original Message -----
From: "John Warren" <John(_at_)wenet(_dot_)tustin(_dot_)ca(_dot_)us>
To: <spf-discuss(_at_)v2(_dot_)listbox(_dot_)com>
Sent: Saturday, January 17, 2004 5:49 PM
Subject: Re: [spf-discuss] Solving the Forwarding Problem for good!!!
I think the "MAIL FROM:" transaction field should contain the
authenticated sender address not the field supplied by the user in the
"From" header field.
Headers are part of the DATA stream. They have, as far as the SMTP protocol
is concerned, nothing to do with the envelope sender. The envelope from is
often, on mailing-lists, for instance, radically different from whatever
"From:" address is to be found in the headers. Mind you, this does not
actually impact SPF negatively in any way, as SPF deals with the domain of
the envelope from address, and not its local part.
I don't remember every seeing the contents of the "MAIL FROM:"
transaction header every being passed on in the delivered message in
any field that a mail client would display.
Then you have not been looking properly. :) In your sendmail.cf it would be
the $g macro, which you might find in the Return-Path:, or as part of a
Received: header,
H?P?Return-Path: <$g>
HReceived: $?sfrom $s $.$?_($?s$|from $.$_)
$.$?{auth_type}(authenticated$?{auth_ssf} bits=${auth_ssf}$.)
...
$.$b$?g
(envelope-from $g)$.
In real life, for instance,
Received: from sc8-sf-list1.sourceforge.net (lists.sourceforge.net
[66.35.250.206])
by asarian-host.net (8.12.10/8.12.10) with ESMTP id i0HHJQfR004779
(version=TLSv1/SSLv3 cipher=EDH-RSA-DES-CBC3-SHA bits=168 verify=NO);
Sat, 17 Jan 2004 18:19:27 +0100 (CET)
(envelope-from
spamassassin-talk-admin(_at_)lists(_dot_)sourceforge(_dot_)net)
None of that is relevant, really; as a Milter gets the envelope from nicely
parsed to itself, as has no need to extract it from any header field.
Oh one more point, you can abort during the "DATA" phase, you don't have
to accept the entire message.
Nope; you can drop the connection, of course, and have the connecting mail
server time out; but then you're probably even worse off, as the connecting
mail server will just keep trying to deliver the message. Other than that,
you will just have to wait the process out, until /^\.$/ (in Perl terms).
- Mark
System Administrator Asarian-host.org
---
"If you were supposed to understand it,
we wouldn't call it code." - FedEx
-------
Sender Permitted From: http://spf.pobox.com/
Archives at http://archives.listbox.com/spf-discuss/current/
Latest draft at http://spf.pobox.com/draft-mengwong-spf-02.9.4.txt
To unsubscribe, change your address, or temporarily deactivate your
subscription,
please go to
http://v2.listbox.com/member/?listname(_at_)©#�«Mo\¯HÝÜîU;±¤Ö¤Íµø�?¡