On Mon, 28 Feb 2005, David MacQuigg wrote:
What started this was my discussion on the SpamCop forum with a bunch of
anti-SPF folks who really believe it can't work technically. I challenged
them to spam me with 'aol.com', and five minutes later I got my
spam. Silly me, I though AOL was really in the forefront, and I hadn't
looked at their SPF record. Then I found amazon.com with "-all", and dared
them to try again. Again, I got spammed. For the third and final try,
Stuart set up a forwarding address for me at bmsi.com. That worked, but I
had to run the test myself. Nobody at SpamCop was listening.
To demonstrate SPF, you have to use an example that is actually using
SPF. I agree that it is wacky that pobox.com is not such an example
(<tinfoil-hat>Microsoft's doing?</tinfoil-hat>), but you should have checked
before offering it as an example.
BTW, on your topic of DSN vs your proposed "Bounce" protocol: try
sending a DSN to stuart(_at_)bmsi(_dot_)com and see how far you get. (I am
using the light-weight SRS instead of full SES - so no fair using
the return-path from any mail you've received from me today.)
--
Stuart D. Gathman <stuart(_at_)bmsi(_dot_)com>
Business Management Systems Inc. Phone: 703 591-0911 Fax: 703 591-6154
"Confutatis maledictis, flamis acribus addictis" - background song for
a Microsoft sponsored "Where do you want to go from here?" commercial.