-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
On Saturday 26 June 2004 11:21 am, spf(_at_)kitterman(_dot_)com wrote:
Now, the latest mengwong spec says:
Pass (+): the message meets the publishing domain's definition of
legitimacy.
I read that to mean PASS==Not a forgery. Personally, I think being able
to say yes, this message is from a permitted sender would have value, but
since I appear to be the only one, I'll move on.
Should we change the wording of this? I believe that SPF only ascertains
whether the domain allows email in its name to be transmitted via a
particular MTA server.
I propose:
Pass (+): The sending MTA is permitted to send email for the domain.
We may want to add that the domain may want to add additional restrictions
to exactly what kind of messages are legitimate with other methods. This
may be better handled in a different section.
My major concern here is that there is clearly confusion over what PASS
means. If people on this list are confused, what are the odds that the
20,000 domains the are coming in the next few days will get it right?
You are absolutely correct.
- --
Jonathan M. Gardner
Mass Mail Systems Developer, Amazon.com
jonagard(_at_)amazon(_dot_)com
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.3 (GNU/Linux)
iD8DBQFA4GQvBFeYcclU5Q0RAtEgAKDHZ285+cltO0WggfKhub54hCIvtQCgwG6t
te9UEA1z+WhA3+C8JG8RkNM=
=Gf9q
-----END PGP SIGNATURE-----