-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Hi all,
should I be elected as a council member by the SPF community, I plan, in
good cooperation with Meng, the other council members, and the community
at large, to lead and support the SPF project to...
"Solve forgery soon, and spam eventually."
Finish the SPFv1 AKA SPF Classic specification in a sensible, most
consistent and backwards compatible way, mostly in the spirit of
Wayne's draft. Submit the final spec to the IETF.
Explain to the public that SPF Classic is not Sender-ID/PRA. Make no
substantial concessions to Microsoft or other political stakeholders
against technical reason. Nevertheless do clever PR.
Advocate SPF Classic to ESPs and implementors as a solution to the
envelope sender forgery problem. Develop and advocate SES, SRS, et al
as equivalent alternative solutions to the forwarding problem (let the
market decide).
Make plans on what to do next. SPFv1.5? SPFv2? End-to-end crypto
such as S/MIME? Domain-based reputation systems (cf. SpamCop?)?
If, after 9 months, the project appears to be continuing beyond the
first year so that a new council will have to be elected, draft a new
charter and establish proper election procedures.
That is my agenda. I hope that this meets your goals and that you will
support me, the new council, and, above all, the SPF project in achieving
them.
As for my SPF-related résumé, if you're interested:
In late 2003 and early 2004 I took part in discussing and reviewing
some of SPF Classic's and SRS's fundamental (and not so fundamental)
design issues.
In 2004 I have spent time on enthusiastically advocating SPF to the
author of the Courier MTA (who was highly sceptical at first but has
now implemented SPF support), to some small and medium sized ISPs, to
a lot of site admins, and to the public in general.
On the other hand, I have lobbied all-out against using XML in SPF
records, against using the RFC 2822 message header as the primary
scope for SPF, and against Meng's decision to merge SPF with Caller-ID
into Sender-ID in order to get the 400lbs gorilla AKA Microsoft
"aboard" (although I do recognize what this decision has probably
gained us).
Finally, I have worked on implementing a basic SPF filter for the
Courier MTA (which is what I use on my servers as you might have
guessed) before its author himself decided to follow the trend. ;-)
Julian Mehnle.
-----BEGIN PGP SIGNATURE-----
Version: PGP 6.5.8
Comment: Get my PGP public key at <http://www.mehnle.net/about>.
iQA/AwUBQZdry8C+zypQWVo7EQKbtgCgxdCAHAMAqsRucTWqH0xtNo47CUcAoP5I
fV+3XyQG1bRXvHhH7CRV3qXk
=jwXT
-----END PGP SIGNATURE-----