-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
David MacQuigg wrote:
My point is that even if a receiver always checks SPF first, it won't
avoid a DNS hunt. We can't assume that the owner/admin of a
domain/subdomain in the MAIL FROM identity has published an SPF record
just to tell us which other method he/she uses.
You are valuing not having to do a single DNS lookup (in order to find out
_if_ SPF can/should be used at all) over the receiver's freedom to choose
what authentication mechanism he finds useful. This evaluation of yours
is absolutely unpractical.
"ID none" should be an immediate reject.
This makes your proposal 100% backwards incompatible to the current system.
Good luck trying to get it adopted.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.5 (GNU/Linux)
iD8DBQFCkFytwL7PKlBZWjsRAomNAKCfxqonb40EMSFXqEEq5pto1AZzyACeLq4N
T+CHgdOkIP2EnVFxJOqr6e0=
=/1XJ
-----END PGP SIGNATURE-----