Re: Shared MTA policy implementation idea

spf-discuss

Re: Shared MTA policy implementation idea

2005-05-16 12:29:29

from [wayne]

In 
<Pine(_dot_)LNX(_dot_)4(_dot_)44(_dot_)0505161455300(_dot_)7770-100000(_at_)bmsred(_dot_)bmsi(_dot_)com>
 "Stuart D. Gathman" <stuart(_at_)bmsi(_dot_)com> writes:

I just had an idea for a simple shared MTA policy mechanism.
Suppose an SMTP service has domain 'service.com' and a client
logs in to SMTP AUTH as 'curly' and gives a MAIL FROM of 
'moe(_at_)example(_dot_)com'.
The service then looks for a DNS A record at:

      moe._using_.paul._at_.service.com._smtpauth_.example.com


MTAs that allow people to send out email with a MAIL FROM other than
their own should do egress SPF checks.  That is, it should check to
see if the MTA is allowed to send email using that domain.

If MTAs do that, then the above check can already be done with an
exists: check.


-wayne

[More with this subject...]

<Prev in Thread]	Current Thread	[Next in Thread>
Re: OT: SpamCop, (continued) Re: OT: SpamCop, Julian Mehnle Shared MTA policy implementation idea, Stuart D. Gathman Re: Shared MTA policy implementation idea, Stuart D. Gathman Re: Shared MTA policy implementation idea, william(at)elan.net Re: Shared MTA policy implementation idea, Stuart D. Gathman Simple method to prevent cross-customer forgery on shared MTAs, Stuart D. Gathman Re: Simple method to prevent cross-customer forgery on shared MTAs, Julian Mehnle Re: Simple method to prevent cross-customer forgery on shared MTAs, Stuart D. Gathman Re: Simple method to prevent cross-customer forgery on shared MTAs, Alex van den Bogaerdt Re: Simple method to prevent cross-customer forgery on shared MTAs, Stuart D. Gathman Re: Shared MTA policy implementation idea, wayne <= Re: Shared MTA policy implementation idea, Stuart D. Gathman SRS for postfix yet?, Mark Jeftovic Re: SRS for postfix yet?, John Capo Re: MUST SPF checking be done during SMTP time?, Chris Haynes Re: MUST SPF checking be done during SMTP time?, Frank Ellermann Re: Re: MUST SPF checking be done during SMTP time?, Chris Haynes Re: MUST SPF checking be done during SMTP time?, Julian Mehnle Re: MUST SPF checking be done during SMTP time?, Julian Mehnle Re: MUST SPF checking be done during SMTP time?, wayne Re: Re: MUST SPF checking be done during SMTP time?, wayne

Previous by Date:	Re: Shared MTA policy implementation idea, Stuart D. Gathman
Next by Date:	Re: Shared MTA policy implementation idea, william(at)elan.net
Previous by Thread:	Re: Simple method to prevent cross-customer forgery on shared MTAs, Stuart D. Gathman
Next by Thread:	Re: Shared MTA policy implementation idea, Stuart D. Gathman
Indexes:	[Date] [Thread] [Top] [All Lists]