From: Matthew Elvey
Sent: Friday, June 25, 2004 3:47 PM
<...>
Did you not read my post explaining how Unified SPF actually does
protect 2821.MAIL FROM, and why we should consider it to do this job
well enough to be acceptable, IMO? I would like to know what you think
after you read it.
Would you mind providing a link to that particular message?
Note:
"RE: [spf-discuss] a grand unified theory of MARID (blame me!)" said in
part:
"If you get word of From: forgery, you're gonna be motivated to do a
little work to get the spammer's domain blacklisted, for example by
putting him in your RHSDRBL (Right Hand Side Distributed RBL), which
will stop the forgery and phishing. "
I don't know about the distributed RHSBL, but conventional DNSBL's, both IP
and RHS types, work just fine. The problem is that you have to hear about
it. By time you've heard about it, your reputation is already damaged. You
can get the spammers listed to stop further abuse, but you can't get the
horses back in the barn. How many potential customers have seen your
(forged) name on a spam and carry a negative impression as a result?
--
Seth Goodman