-----Original Message-----
From: owner-spf-discuss(_at_)v2(_dot_)listbox(_dot_)com
[mailto:owner-spf-discuss(_at_)v2(_dot_)listbox(_dot_)com]On Behalf Of
AccuSpam
Sent: Friday, August 20, 2004 9:43 AM
To: spf-discuss(_at_)v2(_dot_)listbox(_dot_)com
Subject: [spf-discuss] Opening Debate on SPF vs. SenderKeys
http://accuspam.com/senderkeys.php
SenderKeysTM is a specification, proposed by AccuSpamTM, for
deploying, adding,
and verifying digital signatures in e-mail headers to prevent forgery of
existent "From:" addresses.
SenderKeysTM overcomes the following major limitations of the
existing major
three anti-forgery proposals, DomainKeys from Yahoo, SenderID
(aka CallerID)
from Microsoft, and SPF (+SRS) from Pobox.com...
...see the link above.
-Shelby Moore
http://AccuSpam.com
I would recommend that you add a warning to your site that when:
"AccuSpamTM detects spammers who are hiding their identity by sending an
auto-response email to senders who are not on your "Approved Senders" list,
in order to detect undeliverable and forged email addresses."
and sends e-mail to people who have not contacted your customers (because
the mail-from was forged) they stand a good chance to get reported as
spammers and have their accounts cancelled or their servers blacklisted.
Now it your wanted to use SPF to see if the mail-from was forged before you
sent out your challenge and reply, then you might be on to something...
Scott Kitterman