spf-discuss
[Top] [All Lists]

RE: how to protect the HELO using SPF

2004-02-24 11:51:18
Meng Weng Wong wrote:
Let's find a way to express the desired new functionality in the
existing syntax.

perhaps scope=mailfrom,helo?

I find this to be a very reasonable way to handle this.  By allowing the
domains themselves to specify what to apply SPF checks to in the policy
record itself, it provides much flexibility and some extensibility.

Are you thinking that the logic would be to perform the first check on
the MAIL FROM as it is now, and then if it finds a wider scope in the
SPF record to then check the rest of the scope?  Or perform the first
check on the HELO and continue from there?  I think that the current
assumption that not everyone will want to check the HELO string is
probably accurate.

---
Dustin D. Trammell
Vulnerability Remediation Alchemist
Citadel Security Software, Inc.


<Prev in Thread] Current Thread [Next in Thread>