-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Waitman C Gobble II wrote:
http://www.microsoft.com/mscorp/twc/privacy/spam_senderid.mspx
According to that page, If you want to check the SPF record
in incoming
mail, you need to update to Sender ID compliant software to
check PRA of
incoming mail.
I guess I don't understand something. Are we dropping the MAIL-TO
and
EHLO and source IP check altogether
No. In fact, source IP is required for SPF records with PTR in them.
and basing the checks on
what's in
the DATA?
Yes. So the MTA needs to keep track of everything. Headers can be
according to taste.
EHLO, Source IP => top Received-by: header
MAIL FROM (<> From: header) => X-Envelope-From: header
From what I understand, the CDO thingy just drops a text
email into the
outgoing queue for processing. So, it is using the FROM
address of the
message to do MAIL FROM.
MAIL FROM usually equals From: header. For CDO, s/usually/always/
Matthew(_dot_)van(_dot_)Eerde(_at_)hbinc(_dot_)com
805.964.4554 x902
Hispanic Business Inc./HireDiversity.com Software Engineer
perl -e"map{y/a-z/l-za-k/;print}shift" "Jjhi pcdiwtg Ptga wprztg,"
-----BEGIN PGP SIGNATURE-----
Comment: pub key http://matthew.vaneerde.com/pgp-public-key.asc
iD8DBQFBK6c5UQQr0VWaglwRAslfAKCopKO+NQUWXgnxtqubPKV6XdgD6wCg62Uu
u1xzQ+XAanIwlpX2EZk9tJo=
=19r2
-----END PGP SIGNATURE-----