Greg Connor wrote:
That is correct. The way I understand it, if the RFROM parameter is
there, you would check that, and NOT check MAIL FROM.
That is how I understood it too.
If the message has been forwarded, but there is no RFROM, we would
check the 2822 headers and try to glean who forwarded it, if any.
Would we? I have not read everything yet; but last time I checked, we would
revert to checking MAIL FROM:<>, in the absence of RFROM. Making DATA phase
checks mandatory is straying from SPF quite a bit. The RFROM was meant as a
nice compromise, to pull the 2822 Purported Responsible Sender into the 2821
realm. I do not believe it was ever agreed upon, or should be, that we would
always look for the 2822 sender.
Right, I'm assuming that if RFROM checks out OK, you would just skip
MAIL FROM entirely.
Yes, RFROM takes its place, when present.
If RFROM is present, then only a PASS result is
acceptable.
I would say that anything goes which also goes on MAIL FROM:<>. There should
be no difference; should there?
- Mark
System Administrator Asarian-host.org
---
"If you were supposed to understand it,
we wouldn't call it code." - FedEx