spf-discuss
[Top] [All Lists]

A SPIFFY plan for SPF!

2004-06-04 10:59:20
Greetings SPF goonies!

I've been following the SPF situation with Microsoft very closely and have
come up with what I believe to be the answer to all your prayers. It would
be very simple to implement and, now that Microsoft has taken over the
project, we need to stake our claim to the SPF protocol!

So, ladies and germs, I propose we all use a form of what I like to call:
SPF+!

SPF+ is a radical new idea that really stays with the fundamental principles
laid out by the original SPF. In short, SPF+ is a means for embedding TCL
code directly into ".TXT" records!

Each SPF+ ".TXT" record would begin with "README:" which would then be
followed by TCL code which is unique to that domain!

The said TCL code would be downloaded from the DNS via queries and then
promptly excuteded on the remote MTA against its originating message body
and headers. This will allow each site that published SPF+ records to define
the filtering they want remote sites to use when they receive messages from
their domain!

To further refine this new tried and true standard, I recommend that each
site will use TCL for the filtering for obvious reasons which I need not
describe as they are obvious. As well, each site will publish another DNS
record using a non-standard record type ".1ST" that will begin with
"README.1ST:" which will included a md5 hash of the first ".TXT" record.
That way the remote MTA can verify that there is no monkey-in-the-middle
attack going on!

I think it will be obvious to all that these simple steps will help prevent
Micro$crap attempted hegemony on the (S)ender (P)revented (F)rom by
inserting stupid XML code wihch will open us all up to ASN.1 buffer
overflows.

P.P.S. Check out my bloglog in my sig!

--------
Mr. Billy B. Bilano, MSCE, CCNA
<http://www.bilano.biz/>
Expert Sysadmin Since 2003!
'C:\WINDOWS, C:\WINDOWS\GO, C:\PC\CRAWL'  -- RMS


<Prev in Thread] Current Thread [Next in Thread>