...... Original Message .......
On Mon, 20 Dec 2004 21:22:56 -0500 Meng Weng Wong
<mengwong(_at_)dumbo(_dot_)pobox(_dot_)com> wrote:
On Mon, Dec 20, 2004 at 04:52:07PM -0500, Stuart D. Gathman wrote:
|
| There was a proposal for a "zone-cut" default mechanism for SPF clients,
| but it is not widely implemented.
|
it might be easier to implement the default suggested by
gconnor:
if the host has an MX record but no SPF record, use
best_guess "a/24 mx/24 ptr".
if the host has an A record but no MX record and no SPF
record, use best_guess "a/24".
Defining these defaults into the spec would have the effect
of correctly taking care of a majority of cases; only those
cases which are not already correctly described by the above
would have to publish records.
I would suggest that best guess records should produce a NEUTRAL result if
they match. Best guess is a good way to reject lots of obvious forgeries,
but probably a poor way to establish authorization.
I'm thinking no one should have their reputation suffer or end up on a
RHSBL because of a best guess match.
Scott Kitterman