-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Radu Hociung wrote:
So tell me, what SPF records go where and why, and what information can
the recipient assert based on the SPF records?
I think what you intend is the following:
gardener.com = v=spf1 +all
... Because mail.com has no idea where the various clients send from.
out45.us4.outblaze.com = v=spf1 -all
... because this server never sends mail as <> or
*(_at_)out45(_dot_)us4(_dot_)outblaze(_dot_)com
Radu Hociung wrote:
As a free service, the gardener.com domain does not provide relay
priviledges through mail.com's servers.
Declaring an SPF "Pass" for mail means taking responsibility for it. Thus
it is extremely unwise to say
gardener.com IN TXT "v=spf1 a:out45.us4.outblaze.com"
with the intent to authorize the use of "gardener.com" as the MAIL FROM for
all mail coming from out45.us4.outblaze.com. mail.com could not even
disconnect spammers who relay through out45.us4.outblaze.com, because it
is simply outside their control.
The essence of this is: publishing SPF records for domains for which one
does not provide controlled relay service is pointless.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.5 (GNU/Linux)
iD8DBQFCf+SkwL7PKlBZWjsRAqCxAJ9sG6qJu4DSMRm3GjEW8wE95oxRWwCdG03i
tkQxFlmoRy0zztxAz8j2460=
=sDfS
-----END PGP SIGNATURE-----