I'm sure that there has already been discussion of this topic, but I'm
worried about the ability of domain owners to create records that are in
the simple case
"v=spf1 +all"
And in the more complex case
"v=spf1 +mx/8 ip:1.2.3.4/0 -all"
or any other mechanisms that match large segments of the address space.
I kind of have this thought in the back of my head that if any of the
mechanisms with a (+) modifier represent an address space larger than
say CIDR /16, then my implementation could optionally have the ability
to treat this condition as if the domain did not publish an SPF policy
at all, e.g. returns "unknown".
Does anyone have a better definition of "large segment" or other
concerns about this kind of option?
Thanks,
Gary
This message (and any associated files) is intended only for the use of
spf-discuss(_at_)v2(_dot_)listbox(_dot_)com and may contain information that is
confidential, subject to copyright or constitutes a trade secret. If you are
not spf-discuss(_at_)v2(_dot_)listbox(_dot_)com you are hereby notified that
any dissemination, copying or distribution of this message, or files associated
with this message, is strictly prohibited. If you have received this message in
error, please notify us immediately by replying to the message and deleting it
from your computer. Messages sent to and from us may be monitored. Any views or
opinions presented are solely those of the author gary(_at_)exclaimer(_dot_)net
and do not necessarily represent those of the company.
This disclaimer was added by eXclaimer for Microsoft Exchange 2000, a DCSL
product. Please visit our web site at www.exclaimer.co.uk for more information.