spf-discuss
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

RE: Difficulties in specifying SPF TXT records for all A records.

2004-12-22 05:21:07
from [terry] [Permanent Link] 
-----Original Message-----
From: owner-spf-discuss(_at_)v2(_dot_)listbox(_dot_)com
[mailto:owner-spf-discuss(_at_)v2(_dot_)listbox(_dot_)com]On Behalf Of Scott 
Kitterman
Sent: Tuesday, December 21, 2004 10:15 PM
To: spf-discuss(_at_)v2(_dot_)listbox(_dot_)com
Subject: Re: [spf-discuss] Difficulties in specifying SPF TXT records
for all A records.


...... Original Message .......
On Mon, 20 Dec 2004 21:22:56 -0500 Meng Weng Wong
<mengwong(_at_)dumbo(_dot_)pobox(_dot_)com> wrote:

On Mon, Dec 20, 2004 at 04:52:07PM -0500, Stuart D. Gathman wrote:
|
| There was a proposal for a "zone-cut" default mechanism

for SPF clients,

| but it is not widely implemented.
|

it might be easier to implement the default suggested by
gconnor:

if the host has an MX record but no SPF record, use
best_guess "a/24 mx/24 ptr".

if the host has an A record but no MX record and no SPF
record, use best_guess "a/24".

Defining these defaults into the spec would have the effect
of correctly taking care of a majority of cases; only those
cases which are not already correctly described by the above
would have to publish records.


I would suggest that best guess records should produce a
NEUTRAL result if
they match.  Best guess is a good way to reject lots of
obvious forgeries,
but probably a poor way to establish authorization.

I'm thinking no one should have their reputation suffer or
end up on a
RHSBL because of a best guess match.

Scott Kitterman


Good point.

But its not surprising we are seeing "best guess" suggestions coming from Meng: 
 Don't forget that
he is a proponent of PRA, er, Sender ID.  And the very definition of the PRA 
algorithm is,
literally, "guess who is responsible and try to authenticate that guess".


Terry Fielder
Manager Software Development and Deployment
Great Gulf Homes / Ashton Woods Homes
terry(_at_)greatgulfhomes(_dot_)com
Fax: (416) 441-9085





-------
Sender Policy Framework: http://spf.pobox.com/
Archives at http://archives.listbox.com/spf-discuss/current/
Read the whitepaper!  http://spf.pobox.com/whitepaper.pdf
To unsubscribe, change your address, or temporarily
deactivate your subscription,
please go to

http://v2.listbox.com/member/?listname=spf-discuss(_at_)v2(_dot_)listbox(_dot_)com
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: thoughts on disruptive innovation as synthesis between incumbent and startup, william(at)elan.net
Next by Date:  Re: thoughts on disruptive innovation as synthesis between incumbent and startup, Dave Crocker
Previous by Thread:  Re: Using best-guess, jpinkerton
Next by Thread:  RE: Difficulties in specifying SPF TXT records for all A records., Greg Connor
Indexes:  [Date] [Thread] [Top] [All Lists]