On Wed, 22 Sep 2004 00:34:17 GMT, Mark wrote:
Exactly. That was my point all along. :) In fact, under SPF "classic" there
is no guarantee that MAIL FROM is actually an existing address, even! Much
less authenticated, at that.
Let's see. SPF requires on-going infrastructure-level administration, since it
registers MTA IP Addresses. SPF also requires changes in relaying and
forwarding behavior, for a number of scenarios. And lastly, SPF is stated to
be
intended to prevent phishing.
Phishing is about spoofed addresses.
Yet you say that the mailfrom might still be invalid?
d/
--
Brandenburg InternetWorking
dcrocker(_at_)brandenburg(_dot_)com
+1.408.246.8253