So, this is a major issue.
The "Current Protocol Specification" should make this clear that CNAME
should not be used. But it gives an example that uses CNAME!
Guy
-----Original Message-----
From: owner-spf-discuss(_at_)v2(_dot_)listbox(_dot_)com
[mailto:owner-spf-discuss(_at_)v2(_dot_)listbox(_dot_)com] On Behalf Of Stuart
D. Gathman
Sent: Monday, September 13, 2004 10:41 PM
To: spf-discuss(_at_)v2(_dot_)listbox(_dot_)com
Subject: Re: [spf-discuss] txt SPF record with cname
On Mon, 13 Sep 2004, guy wrote:
If I have these dns records:
watkins-home.com. A 1.2.3.4
txt "v=spf1 a -all"
www.watkins-home.com. CNAME watkins-home.com.
txt "v=spf1 -all"
The txt record for "www.watkins-home.com." gives an error.
I get an error similar to this in the messages file:
named[16521]: dns_master_load: master/watkins-home.com.db:4:
www.watkins-home.com: CNAME and other data
Is this a problem? Can "www.watkins-home.com." be forged?
Yes. You cannot mix CNAME with other records for a name. This is
a DNS restriction.
Should I change the CNAME to A?
Yes.
--
Stuart D. Gathman <stuart(_at_)bmsi(_dot_)com>
Business Management Systems Inc. Phone: 703 591-0911 Fax: 703 591-6154
"Confutatis maledictis, flamis acribus addictis" - background song for
a Microsoft sponsored "Where do you want to go from here?" commercial.
-------
Sender Policy Framework: http://spf.pobox.com/
Archives at http://archives.listbox.com/spf-discuss/current/
http://www.InboxEvent.com/?s=d --- Inbox Event Nov 17-19 in Atlanta features
SPF and Sender ID.
To unsubscribe, change your address, or temporarily deactivate your
subscription,
please go to
http://v2.listbox.com/member/?listname=spf-discuss(_at_)v2(_dot_)listbox(_dot_)com