spf-discuss
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: Electronic Frontier Foundation (EFF) Article OnAnti-Spam Technologies Mentions SPF

2004-11-22 07:47:34
from [Daniel Taylor] [Permanent Link] 
David Woodhouse wrote:

On Fri, 2004-11-19 at 12:26 +0000, Mark wrote:


I think it's been said before, but such an IT organization would be
irresponsible and recklessly incompetent. Not saying that's
impossible -- of course there are IT organizations that don't do their
jobs. They would be guilty of not doing their jobs correctly if they
restricted you from sending and then didn't give you a way to send
stuff that is supported.



True. And until the forwarding problem is actually solved in the real
world, _nobody_ has 'a way to send stuff that is supported.' 
Thus, any IT department which publishes a record with '-all' for their
company is not doing their job correctly, unless they're using SES
instead of relying on the assumption that the whole world has already
'upgraded' to do SRS for them.


Again, I call bullshit.

Any IT department which CANNOT publish -all is not doing their
job correctly.

I can see ?all or ~all for an ISP that has paying customers
who maintain their own machines and which the ISP has no control
over, but it is the responsibility of corporate IT to maintain
e-mail and other critical services in a manner that ensures
accessibility and accountability for their company.

Joe in sales who goes to trade shows MUST NOT have to rely
on unvetted third parties or direct sending for e-mail access.
He should have direct, authenticated access to proper relays
that will send his mail out to the world as if he were in the office.
Moreso, he should have this capability without needing to make
changes on his laptop on his own. There are enough ways to do this that
the precise method is left as an exercise for the industrious Googler.


It's fine for toy domains which people run for themselves, but when the
stakes are higher you actually have to start paying some attention to
detail.


And this is one of the details that is oh so critical.

Do you hand your corporate stationary out on street corners?

Your domain name is an even more important element of your corporate
identity. It must be safeguarded. SPF with less than -all is an
inadequate safeguard.

Only people with toy domains can afford to treat them so recklessly as
to allow unauthenticated forwards.

--
Daniel Taylor          VP Operations            Vocal Laboratories, Inc.
dtaylor(_at_)vocalabs(_dot_)com   http://www.vocalabs.com/        
(952)941-6580x203
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: CALL TO VOTE FOR THE SPF COUNCIL, Alex van den Bogaerdt
Next by Date:  Re: Electronic Frontier Foundation (EFF) Article OnAnti-Spam Technologies Mentions SPF, David Woodhouse
Previous by Thread:  RE: Electronic Frontier Foundation (EFF) Article OnAnti-Spam Technologies Mentions SPF, David Woodhouse
Next by Thread:  Re: Electronic Frontier Foundation (EFF) Article OnAnti-Spam Technologies Mentions SPF, David Woodhouse
Indexes:  [Date] [Thread] [Top] [All Lists]