"Mark Shewmaker" <mark(_at_)primefactor(_dot_)com> wrote:
Then if someone forges mail from their own IP address:
o The spf tests for mail froms of "user(_at_)example(_dot_)com" return FAIL.
o But the spf tests for mail froms of
"user(_at_)support(_dot_)example(_dot_)com"
will return UNKNOWN, (even though support.example.com doesn't
exist and a "host support.example.com" returns NXDOMAIN.)
It's allready a good idea to reject with a temporary error email with an
inexistant FROM domain. That's what I do, and it stops a lot of junk. Check
out my qpsmtpd stats on http://stats.logidac.com/details.cgi the dark blue
bars are non existant from domains.
Cheers,
GFK's
--
Guillaume Filion, ing. jr
Logidac Tech., Beaumont, Québec, Canada - http://logidac.com/
PGP Key and more: http://guillaume.filion.org/
-------
Sender Permitted From: http://spf.pobox.com/
Archives at http://archives.listbox.com/spf-discuss/current/
Latest draft at http://spf.pobox.com/draft-mengwong-spf-02.9.5.txt
Wiki: http://spfwiki.infinitepenguins.net/pmwiki.php/SenderPermittedFrom/
To unsubscribe, change your address, or temporarily deactivate your
subscription,
please go to
http://v2.listbox.com/member/?listname(_at_)½§Åv¼ð¦ç?2b¥yÈbox(_dot_)com