spf-discuss
[Top] [All Lists]

Re: who will use scopes?

2004-07-09 03:25:31
Mark Lentczner wrote:

pamho.net TXT "v=spf1 scope=-helo ip4:81.221.18.146 scope=* -all"
mail.pamho.net TXT "v=spf1 scope=helo ip4:81.221.18.146 scope=* -all"

I notice that these both only allow the same machine.  Is there a
security concern here?  You control the machine, you configure both
aspects of it (what it uses for HELO and what it uses for other
things.)  If you allowed both names in all scopes - you are still only
allowing your machine to do so.  Hence, all I can see that the scoping
does is protect against your own mis-configuration.  And furthermore,
even if you did mis-configure your machines, the only reputation that
would be on the line is your own, which it is anyway.

It was a mistake in reasoning on my side. For my server I don't need the
'scope' modifier.

Roger


<Prev in Thread] Current Thread [Next in Thread>