spf-discuss
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Wildcard DNS entry

2004-09-15 13:48:00
from [Roger Moser] [Permanent Link] 
Meng Weng Wong wrote:


oh, i just figured out one more class of solutions:

spammers will start to forge www.example.com

receivers will observe that www.example.com has no mx record

receivers will try to connect to port 25

receivers will observe that www.example.com is not an mta


This would not work in following case:

example.com.            A       1.2.3.4
example.com.            MX      10 mx.example.com.
example.com.            TXT     "v=spf1 a -all"
mx.example.com.         A       1.2.3.4
www.example.com.        A       1.2.3.4

Example.com must publish also:

www.example.com.        TXT     "v=spf1 -all"

Roger
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: SPF-compliant phishing?, Jonathan Gardner
Next by Date:  RE: Wildcard DNS entry, Seth Goodman
Previous by Thread:  RE: Wildcard DNS entry, guy
Next by Thread:  RE: Wildcard DNS entry, Seth Goodman
Indexes:  [Date] [Thread] [Top] [All Lists]