----- Original Message -----
From: <johnc-lists(_at_)cleburne(_dot_)com>
To: <spf-discuss(_at_)v2(_dot_)listbox(_dot_)com>
Sent: Tuesday, February 03, 2004 4:46 PM
Subject: Re: [spf-discuss] Re: "extreme SPF" scenario for ISPs
Is it correct for ISPs to ban their users from using an authenticated
SMPT server outside of their network?
Absolutely, YES!
I think you got it backwards. The whole purpose of offering SMTP AUTH is to
provide a means to allow relay from *outside* your network. Relays from
within your own network should simply be whitelisted by IP address/subnet;
like:
connect:127.0.0.1 RELAY
connect:1.2.3 RELAY
In fact, a large ISP that I know of here, actually went out his way to *not
offer* SMTP AUTH for connections from within his own IP space (see sendmail
srv_features for that). And that makes perfect sense: it is redundant, and
completely unnecessary (for the ISP in question it just meant thousands of
extra calls to his support center, for people who misconfigured their mail
client, whereas there is no need for them to jump through the SMTP AUTH hoop
to begin with).
- Mark
System Administrator Asarian-host.org
---
"If you were supposed to understand it,
we wouldn't call it code." - FedEx
-------
Sender Permitted From: http://spf.pobox.com/
Archives at http://archives.listbox.com/spf-discuss/current/
Latest draft at http://spf.pobox.com/draft-mengwong-spf-02.9.5.txt
Wiki: http://spfwiki.infinitepenguins.net/pmwiki.php/SenderPermittedFrom/
To unsubscribe, change your address, or temporarily deactivate your
subscription,
please go to
http://v2.listbox.com/member/?listname(_at_)©#�«Mo\¯HÝÜîU;±¤Ö¤Íµø�?¡