On Sat, Jan 24, 2004 at 04:16:55AM +0100, Julian Mehnle wrote:
| Marc Alaia [marc(_at_)alaia(_dot_)net] wrote:
| > How exactly is it a privacy concern for a receiving SMTP server (that is
| > receiving an email from joe(_at_)domain(_dot_)com from IP 11.22.33.44) to
do a dns
| > query of:
| > 44.33.22.11.joe._spf.domain.com and the DNS server would return a value
| > that signifies either 'permitted' or 'denied'?
|
| *That* would indeed hardly be a privacy concern.
|
| > I believe that is pretty much what Phil was suggesting, but with
| > possibly more information fields in the query....
|
| *What* more information fields?
My original idea was to include the following pieces of information in the
first query:
SMTP client IP address
Envelope sender domain (RHS)
and if a certain response code was received, then a second query adding on
the information:
Envelope sender username (LHS)
The recipient information was not included.
This _would_ allow a domain owner to track where their customer is sending
email from. But this wouldn't be any different than a bank tracking where
their customer withdraws money from ATMs. The domain owner should be subject
to privacy laws to NOT divulge that information to anyone but the email address
owner, or as otherwise designated in the law (e.g. under court order, etc).
Back to SPF.
SPF differs slightly in that such a query is not made unless the domain
owner requests it to be made. And then the domain owner can specify how
the request is made (whereas my proposal would have require a fixed format
for making the request). SPF does make this more flexible.
--
-----------------------------------------------------------------------------
| Phil Howard KA9WGN | http://linuxhomepage.com/ http://ham.org/ |
| (first name) at ipal.net | http://phil.ipal.org/ http://ka9wgn.ham.org/ |
-----------------------------------------------------------------------------
-------
Sender Permitted From: http://spf.pobox.com/
Archives at http://archives.listbox.com/spf-discuss/current/
Latest draft at http://spf.pobox.com/draft-mengwong-spf-02.9.4.txt
To unsubscribe, change your address, or temporarily deactivate your
subscription,
please go to
http://v2.listbox.com/member/?listname(_at_)©#�«Mo\¯HÝÜîU;±¤Ö¤Íµø�?¡