spf-discuss
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: who will use scopes?

2004-07-09 03:25:31
from [Roger Moser] [Permanent Link] 
Mark Lentczner wrote:


pamho.net TXT "v=spf1 scope=-helo ip4:81.221.18.146 scope=* -all"
mail.pamho.net TXT "v=spf1 scope=helo ip4:81.221.18.146 scope=* -all"


I notice that these both only allow the same machine.  Is there a
security concern here?  You control the machine, you configure both
aspects of it (what it uses for HELO and what it uses for other
things.)  If you allowed both names in all scopes - you are still only
allowing your machine to do so.  Hence, all I can see that the scoping
does is protect against your own mis-configuration.  And furthermore,
even if you did mis-configure your machines, the only reputation that
would be on the line is your own, which it is anyway.


It was a mistake in reasoning on my side. For my server I don't need the
'scope' modifier.

Roger
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: is there even a need for funding?, Roger Moser
Next by Date:  Re: Unified SPF works in progress now in alpha, Frank Ellermann
Previous by Thread:  Re: who will use scopes?, Frank Ellermann
Next by Thread:  Re: What else to go into the pot?, Tony Finch
Indexes:  [Date] [Thread] [Top] [All Lists]