spf-discuss
[Top] [All Lists]

Re: What DB-Backed forwarding is.

2005-01-11 16:50:35
On Tue, 11 Jan 2005, Hannah Schroeter wrote:

I suppose the forwarder can record the original sender in an
RFC2822 header.  

Which reduces the use of SES, too. With SES *envelope* senders you can
check them before the SMTP DATA phase. With the original SES in an
RFC2822 header, you have to defer checking to the end of DATA, and you
have a bit more resource usage to fiddle the SES sender out of the
header.

No quite.  Your pre-DATA checking would validate the forwarder in the
MAIL FROM.  If he checks out, then you go ahead and receive the mail.
However, you notice that there is an "Original-Sender" or whatever
header with SES, and because you don't fully trust the forwarder
to have already checked it for you (maybe he doesn't know about SES and
the SPF record doesn't validate it via exists), you go ahead and validate the
SES signature just to make sure.

-- 
              Stuart D. Gathman <stuart(_at_)bmsi(_dot_)com>
    Business Management Systems Inc.  Phone: 703 591-0911 Fax: 703 591-6154
"Confutatis maledictis, flamis acribus addictis" - background song for
a Microsoft sponsored "Where do you want to go from here?" commercial.


<Prev in Thread] Current Thread [Next in Thread>