On Thu, 24 Feb 2005, Julian Mehnle wrote:
This kind of nihilism is the best means to kill off any standard right
away before it has a chance to take off. Incompetence cannot be an excuse
for lowering security standards.
If a domain owner publishes "-all", it is everyone's absolute right to
assume that this is what he meant. Otherwise, what "now we can begin
taking SPF records seriously" switch date would you suggest?
And if the sender *did* make a mistake, the best and friendliest way
to let him know is to REJECT the message early (i.e. at a border MTA)
so he'll get a nice DSN from his own MTA or MSA.
--
Stuart D. Gathman <stuart(_at_)bmsi(_dot_)com>
Business Management Systems Inc. Phone: 703 591-0911 Fax: 703 591-6154
"Confutatis maledictis, flamis acribus addictis" - background song for
a Microsoft sponsored "Where do you want to go from here?" commercial.