----------------
From: owner-spf-discuss(_at_)v2(_dot_)listbox(_dot_)com
[mailto:owner-spf-discuss(_at_)v2(_dot_)listbox(_dot_)com] On Behalf Of David
MacQuigg
Sent: maandag 28 februari 2005 19:49
To: spf-discuss(_at_)v2(_dot_)listbox(_dot_)com
Subject: Re: [spf-discuss] Re: Email Forwarder's Protocol ( EFP )
Return-Path:
<SRS0=BF6T=RK=amazon(_dot_)com=forged(_at_)bounce2(_dot_)pobox(_dot_)com>
...
X-Pobox-Pass: forged(_at_)amazon(_dot_)com is whitelisted
As you can see the 'amazon.com' Return-Path, was propagated all the
way from my original Mail From command to the final Return-Path.
SRS doesn't help.
Yes, it does; pobox.com should just simply not have accepted your bogus
amazon.com MAIL FROM address. Amazon publishes with "-all", and you're
not listed as an authorized relay for them.
As for the (sour) irony of pobox.com, the inventers of SPF, allowing you
this gross bogocity, well, suffice to say it raises a few eyebrows over
here. :) But it has nothing to do with the functionality of SPF itself,
and even less with SRS. In fact, with SPF switched "on", you would have
been halted at the very first MAIL FROM.
- Mark
System Administrator Asarian-host.org
---
"If you were supposed to understand it,
we wouldn't call it code." - FedEx