SPF-compliant phishing?

I wrote:

The current syntax allows SPF to validate the local part on the envelope
sender. So it can validate users. For example:

mxout                 A       192.168.1.2
@                     TXT     "v=spf1 exists:%{l}.%{i}.spf.%{o} -all"
John.192.168.1.2.spf  A       127.0.0.2
Mary.192.168.1.2.spf  A       127.0.0.2


If you have a lot of IP addresses, then you could do following:

@               TXT     "v=spf1 -include:ip.%{o} exists:%{l}.spf.%{o} -all"
ip              TXT     ("v=spf1 -ip4:192.168.1.2 -ip4:192.168.1.3"
                " -ip4:192.168.1.4 -ip4:192.168.1.5 +all")
John.spf        A       127.0.0.2
Mary.spf        A       127.0.0.2

Roger

<Prev in Thread]	Current Thread	[Next in Thread>
RE: SPF-compliant phishing?, (continued) RE: SPF-compliant phishing?, guy RE: SPF-compliant phishing?, Seth Goodman RE: SPF-compliant phishing?, Rik van Riel RE: SPF-compliant phishing?, Seth Goodman RE: SPF-compliant phishing?, Stuart D. Gathman RE: SPF-compliant phishing?, David Woodhouse RE: SPF-compliant phishing?, David Woodhouse Re: SPF-compliant phishing?, Meng Weng Wong RE: SPF-compliant phishing?, Seth Goodman Re: SPF-compliant phishing?, Stuart D. Gathman SPF-compliant phishing?, Roger Moser <= Re: SPF-compliant phishing?, David Woodhouse Re: SPF-compliant phishing?, Jonathan Gardner Re: SPF-compliant phishing?, David Woodhouse Re: SPF-compliant phishing?, Jonathan Gardner Re: SPF-compliant phishing?, David Woodhouse RE: SPF-compliant phishing?, Guy Re: SPF-compliant phishing?, Jonathan Gardner RE: SPF-compliant phishing?, Scott Kitterman RE: SPF-compliant phishing?, Stuart D. Gathman RE: SPF-compliant phishing?, Scott Kitterman

Previous by Date:	RE: Observations on SPF record publishing in .edu, guy
Next by Date:	RE: SPF-compliant phishing?, Seth Goodman
Previous by Thread:	Re: SPF-compliant phishing?, Stuart D. Gathman
Next by Thread:	Re: SPF-compliant phishing?, David Woodhouse
Indexes:	[Date] [Thread] [Top] [All Lists]