spf-discuss
[Top] [All Lists]

Re: Is SPF Authenication or Authorization?

2004-09-21 16:25:32
On Tue, Sep 21, 2004 at 05:12:57PM -0600, Steve Meyers wrote:
| 
| That's more like SPF.  All you can tell is that the swipe was from a 
| certain company, you can't tell who.  The ISP's mail server is a shared 
| resource (much like our building-wide swipe card), so individual user 
| authentication to the recipients mail server is impossible, unless the 
| sender's ISP takes measures to eliminate cross-account spoofing.  That 
| would not be within the scope of SPF though.
| 

I think the above scenario confuses authentication with identification.