On Thu, 2004-08-05 at 03:29, Michel Bouissou wrote:
To advance the discussion with some real-life example, you will find below
the
list of domains for which my (relatively low-traffic) personal server has
received a "MAIL FROM:" in the last days (for any kind of messages, either
legitimate or spam or forged), and that DO have an SPF record.
<!- snip !->
Feeling sorry for anyone on this list who has fallen prey to the
blatantly MISLEADING wording on the main SPF site, and actually believes
that SPF stops SPAM, I have the following to say:
SPF does not stop SPAM. SPF is a means for network administrators and
domain owners to publish through DNS a "network space" if you will that
is permitted to use its domain name.
OF COURSE SPAMMERS WILL PUBLISH SPF! This is because they are lemmings
being led off a cliff, this is what we wanted them to do... If they
publish, then they do us a really nice favour and in general describe
their network somewhat, in addition making it REALLY easy to
re-implement RHBL's (right hand black lists EG: black list by domain
name). RHBL's become effective ONLY if spammers can not forge! So, us
seeing spammers publishing SPF is _GOOD_. Very good indeed.
Cheers,
James
--
James Couzens,
Programmer
( ( (
((__)) __lib__ __SPF__ '. ___ .'
(00) (o o) (0~0) ' (> <) '
---nn-(o__o)-nn---ooO--(_)--Ooo--ooO--(_)--Ooo---ooO--(_)--Ooo---
http://libspf.org -- ANSI C Sender Policy Framework library
http://libsrs.org -- ANSI C Sender Rewriting Scheme library
-----------------------------------------------------------------
PGP: http://pgp.mit.edu:11371/pks/lookup?op=get&search=0x7A7C7DCF
-------
Sender Policy Framework: http://spf.pobox.com/
Archives at http://archives.listbox.com/spf-discuss/current/
http://www.InboxEvent.com/?s=d --- Inbox Event Nov 17-19 in Atlanta features
SPF and Sender ID.
To unsubscribe, change your address, or temporarily deactivate your
subscription,
please go to
http://v2.listbox.com/member/?listname=spf-discuss(_at_)v2(_dot_)listbox(_dot_)com
signature.asc
Description: This is a digitally signed message part