From: Lars Dybdahl
Sent: Thursday, April 22, 2004 10:30 AM
Current legitimate forwarders use forged "from" to accomplish
the forward and preserve bounce information.
That isn't forgery because the forwarder is acting legitimately
on behalf
of the correspondents.
With SPF, you simply state, "which servers may act legitimately".
If you include the forwarder, it's legitimately. If not, it's not.
You don't normally list a forwarder as a designated sender in an SPF record.
That would open you up to anyone with an account at that forwarder to send
an email claiming to be from your domain. With a large forwarder like
PoBox, this would not be a good idea and I doubt that the forwarder would
appreciate it either. That is exactly what SRS is for, though it is not
pretty.
--
Seth Goodman