In
<Pine(_dot_)LNX(_dot_)4(_dot_)60(_dot_)0410071745470(_dot_)10769(_at_)hermes-1(_dot_)csi(_dot_)cam(_dot_)ac(_dot_)uk>
Tony Finch <dot(_at_)dotat(_dot_)at> writes:
My point is that nobody has properly thought through how to deploy SPF on
anything other than toy domains in such a way that it can safely reject
email.
Other than, for example, pobox.com that is.
To be quite honest, I have a hard time thinking of *any* single
anti-spam/anti-forgery system that most people would trust to be the
sole basis for rejecting email. That is one of the reasons why I like
SpamAssassin: it combines many different techniques, including SPF
failures.
-wayne