On Wed, 24 Mar 2004, James Couzens wrote:
On Wed, 2004-03-24 at 19:53, Stuart D. Gathman wrote:
For example, delegate is myserver.com, email domain is foobar.com,
if standard SPF lookup for foobar.com returns none, I lookup
foobar.com._spf.myserver.com and use that instead if it exists.
trusted-forwarder.org
This functionality is available within most of the SPF implementations,
libspf included.
trusted-forwarder.org is a whitelist. That is not what I am talking about.
Suppose foobar.com has no SPF record because their web hosting company
which controls their DNS is too stupid to know what a TXT record is,
and management is too stupid to realize that they should let me control
their DNS instead. So I add foobar.com's SPF record under _spf.myserver.com,
and all my customers machines (and any machine using delegatation to
myserver.com) can get the SPF record despite all the stupidity.
It doesn't publish it to the world, but it is a start. If there were
a central site to send SPF records to (that could somehow verify that
the submissions are legit), then this would let senders with braindead
ISP/hosting publish SPF records.
--
Stuart D. Gathman <stuart(_at_)bmsi(_dot_)com>
Business Management Systems Inc. Phone: 703 591-0911 Fax: 703 591-6154
"Very few of our customers are going to have a pure Unix
or pure Windows environment." - Dennis Oldroyd, Microsoft Corporation