spf-discuss
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

RE: SUBMITTER is a bad idea

2004-06-04 02:50:17
from [Seth Goodman] [Permanent Link] 
From: Stuart D. Gathman
Sent: Thursday, June 03, 2004 11:08 PM


On Thu, 3 Jun 2004, Michael R. Brumm wrote:


Finally, I've thought a lot about SRS vs. SUBMITTER in the past

few days.


SRS:
 ugly
 not exploitable
 requires upgrading only the MTAs which forward

SUBMITTER:
 pretty
 bounce forgery is exploitable
 requires upgrading ALL MTA which wants to receive a forward
(much larger pool)


You forgot:

Resurrecting Deprecated Reverse Source Path:
  pretty
  bounce forgery is exploitable (fixable with SES, btw.  See
    suggestion for validating SES via DNS instead of CBV.)
  requires upgrading (or downgrading :-) only the MTAs which forward


Absolutely.  This is already in the RFC's, it won't break any MTA's that
don't implement the protocol and it requires no new ESMTP parameters.  This
really seems like a pretty obvious choice.

--

Seth Goodman
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: dynamic DNS and SPF?, Peter Bowyer
Next by Date:  Re: dynamic DNS and SPF?, Lotas Smartman
Previous by Thread:  RE: SUBMITTER is a bad idea, Stuart D. Gathman
Next by Thread:  RE: SUBMITTER is a bad idea, Michael R. Brumm
Indexes:  [Date] [Thread] [Top] [All Lists]