On Mon, 20 Dec 2004, Ramgopal, Ram wrote:
There are practical difficulties in specifying SPF records for so many
DNS entries. The current SPF TXT specification model does not scale
well for large installations. Is there a plan to incorporate a default
SPF TXT specification at the zone or at the top domain level? Such an
arrangement is highly necessary. What can we do in the interim?
This is a DNS server problem more than an SPF problem. You
should mention which DNS server you are using.
However, the BIND DNS server does not help much with that situation. BIND
wildcards don't work for domains for which you have also specified an A record.
Other DNS authoritative server implementations may do better.
There was a proposal for a "zone-cut" default mechanism for SPF clients,
but it is not widely implemented.
--
Stuart D. Gathman <stuart(_at_)bmsi(_dot_)com>
Business Management Systems Inc. Phone: 703 591-0911 Fax: 703 591-6154
"Confutatis maledictis, flamis acribus addictis" - background song for
a Microsoft sponsored "Where do you want to go from here?" commercial.