spf-discuss
[Top] [All Lists]

Re: SPF and Responsibility

2004-07-22 03:13:45
Le jeudi 22 Juillet 2004 11:31, Mark Shewmaker a écrit :

Uhm, err, with the "+" character, which tells you that the sender is
willing to stand behind messages from his domain from this server,
putting his reputation on the line.
[...]
For a sender to tell recipients to please trust that mail from a certain
server (claiming to come from his domain) really is from his domain,
means the sender has to trust that that is true too.  (To misquote
Jonathan's wording.)

No, no.

The "+" character, once again, does not mean that <<the sender is
willing to stand behind messages from his domain from this server,
putting his reputation on the line.>>

It doesn't mean either that the sender asks <<please trust that mail from a 
certain server>>

Actually the sender doesn't ask anything such as "please trust..." and he 
makes no assertion about a given message.

The sender domain *ONLY* asserts "this server is legitimate for sending mail 
coming from my domain". And not anything further than this.

The SPF record makes a statement about a server "it is legitimate for this 
domain". It does not make any statement about a given message.

-- 
Michel Bouissou <michel(_at_)bouissou(_dot_)net> OpenPGP ID 0xDDE8AC6E


<Prev in Thread] Current Thread [Next in Thread>