Too many people are looking at spf records from the administrator eyes and
not from the spammers eyes.
First if I am a spammer I would scan domains spf records and look for
domains that specify the entire internet space as valid spf range. Then I
would create thousand of fake email addresses for this domain and send my
spam using these domains.
If I cannot find any domains with universal spf records I would then look
for domains that have extremely large ip ranges in the spf records. I would
use zombies from these ip ranges to send the spam with the fake return
addresses.
Therefore the domain with excessive ip ranges in the spf records are just
asking to be used by the spammers.
In fact if I was a spammer I would be on this list looking for domains that
represent they need excessive ip ranges in the spf record and making a list.
Sincerely
------------------------------------------------------------
John D. Keown, CEO
NuNet, Inc.
7535 Windsor Dr Suite A305
Allentown, PA 18195
Local: (610) 289-6500 - Toll-Free: 888-NuNet-Me Ext. 2000
-------
Sender Policy Framework: http://spf.pobox.com/
Archives at http://archives.listbox.com/spf-discuss/current/
Send us money! http://spf.pobox.com/donations.html
To unsubscribe, change your address, or temporarily deactivate your
subscription,
please go to
http://v2.listbox.com/member/?listname=spf-discuss(_at_)v2(_dot_)listbox(_dot_)com