spf-discuss
[Top] [All Lists]

Re: Difference between "softfail" and "neutral"

2004-07-17 19:57:17
Which the MSA will say:

"Well, Hell!  I won't make a decision for you because you can't make up your
mind and I will continue as if you can't be trusted and will do further
testing."  - MORE OVERHEAD!

It other words,  but it is completely senseless. Who cares what the sender
or domain is saying?

Either the DOMAIN is ready to use SPF or it is not.  All it doing is
creating a loophole for spammers and more overhead for other systems to use
alternative technologies.

Meng needs to get rid of it or compromise with putting a time limit on its
usage.  I already added a time limit logic, and I'm sure others will follow.

Meng needs to make very clear in the Technical Specifications that:

        Relaxed Provisions are offered for temporary transitional periods
only. Permanent usage
        is not expected.

and I highly recommend adding stronger logic that says:

        Relaxed Provisions are offered for temporary transitional periods
only. Permanent usage
        is not expected.  SPF Clients has provisions for Neutral and
SoftFail X months expiration.

This will cause the BIG guys, the ones that are most needed this in the
first place, to get off their butt and start getting their network "chain of
trust" secured.

It really isn't a big problem yet because 99.99% our downlinks are not SPF
ready servers because once this becomes the NORM,  then the SPF SPOOFERS
will be a dime a dozen, and it doesn't have to be about them doing it on
purpose, just using a domain for spoofing, unbeknownst to them, it will be
SPF ready and the servers will have to do all extra stuff more often now.

-- 
Hector Santos, Santronics Software, Inc.
http://www.santronics.com



----- Original Message ----- 
From: "Roger Moser" <roger_moser_spf(_at_)greenmail(_dot_)ch>
To: <spf-discuss(_at_)v2(_dot_)listbox(_dot_)com>
Sent: Saturday, July 17, 2004 2:38 PM
Subject: Re: [spf-discuss] Difference between "softfail" and "neutral"


Arjen de Korte wrote:

What's the point of making a difference between a
"~all" and "?all" at the end of your SPF record?

"?all" means "I don't know if the other mail servers are authorized to
send
mail from my domain".

"~all" means "No other mail server is authorized to send mail from my
domain, but some of them may be forwarding mail from my domain without
doing
SRS".

Roger

-------
Sender Policy Framework: http://spf.pobox.com/
Archives at http://archives.listbox.com/spf-discuss/current/
Send us money!  http://spf.pobox.com/donations.html
To unsubscribe, change your address, or temporarily deactivate your
subscription,
please go to
http://v2.listbox.com/member/?listname=spf-discuss(_at_)v2(_dot_)listbox(_dot_)com




<Prev in Thread] Current Thread [Next in Thread>