-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Paul Howarth wrote:
| Daniel Taylor wrote:
|
|> As Mr. Gardner pointed out, greylisting is sufficient, i.e. "it's new
|> to me",
|> and overly permissive SPF records are self-evident.
|
|
| Greylisting is good but not without its problems, e.g. handling of big
| server farms, VERPed sender addresses etc. I don't think overly
| permissive SPF records are at all self-evident though. Supposing I had:
|
| example.com TXT "v=spf1 exists:%{v}.spf.example.com"
|
| $GENERATE 0-255 *.$.spf.example.com A 172.16.$.23
|
| Would that be self-evident to you, given that you can't "see" the
| wildcard and GENERATEd DNS zone?
|
In a domain that is new to my server, I would be inclined to
flag _any_ SPF record more complex or permissive than "a mx ptr -all".
Mind you, I'm just one person and only control a few mail servers,
but I would be _comfortable_ doing that. As less mail comes in
flagged as spam, it becomes easier to make judgements on whether
something is actually spam or not.
|
| SPF and similar (e.g. designated sender) technologies have been
| discussed in quite some detail over on SPAM-L in recent months and I
| don't think there's *anyone* there that thinks that SPF will solve spam.
| If anyone truly believes that it will, it would be interesting to see
| you try to convince the folks over there (see
| http://www.tile.net/lists/spaml.html for subscription info), most of
| whom have much more Internet experience and knowledge than I do, and
| some of whom are responsible for some very large networks.
|
| I'm also reminded of Vernon Schryver's page on the "Final Ultimate
| Solution to the Spam Problem (FUSSP).") -
| http://www.rhyolite.com/anti-spam/you-might-be.html ;-)
|
True, and armed robbery hasn't gone away either, yet I am
comfortable walking unarmed carrying money through most parts
of the city I live in.
Most e-mail spam constitutes criminal behaviour. Criminal
behaviour flourishes in the dark. SPF is a light, maybe just
a penlight today, but as more sites adopt it it will become
brighter. Then watch the cockroaches scurry for whatever dark
corners of the net they feel safe in.
- --
Daniel Taylor VP Operations Vocal Laboratories, Inc.
dtaylor(_at_)vocalabs(_dot_)com http://www.vocalabs.com/
(952)941-6580x203
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.4 (GNU/Linux)
Comment: Using GnuPG with Debian - http://enigmail.mozdev.org
iD8DBQFBAVXM8/QSptFdBtURAmQNAJ4gS3D7z9rX5SjMLiU2yNv8cMdvTgCfSEAz
nX+NwfuIey1xAc0DmewdxWQ=
=wXBU
-----END PGP SIGNATURE-----