In <c11d02530505021353476c530e(_at_)mail(_dot_)gmail(_dot_)com> Matt
<mhoppes(_at_)gmail(_dot_)com> writes:
So domains like ebay.com are listed on trusted-forwarder.com?
note: it is trusted-forwarder.ORG, not .com. I haven't registered
all the typos for this domain because it is usually a config option on
your SPF implementation and people don't type it directly.
So then what keeps spam from coming from blah(_at_)ebay(_dot_)com with spam?
Being listed on trusted-forwarder.org means that certain *IP*
addresses[1] are allowed to send email claiming to be from anyone.
Hence, IP addresses controlled by ebay.com could send spam, but people
using the ebay.com domain name can't. However, if ebay gets out of
control and starts spamming, instead of just relaying messages, they
will get dropped from the T-FWL.
See http://trusted-forwarder.org for all the gory details.
-wayne
[1] Ok, domains can also be listed if their forward and reverse DNS
entries match for their IP addresses. The result is still that
the IP addresses are controlled.