spf-discuss
[Top] [All Lists]

Re: Request for Input on the meaning of "pass".

2005-06-02 15:34:06
Julian Mehnle wrote:
Again, what's the difference between one being authorized to use a domain 
and one's use of a domain being authentic?  Are you saying that there are 
people who are authorized to use a domain, but whose use of that domain 
isn't authentic?  In other words, are you saying that the concept of 
authorizing people to forge a domain is meaningful?
  
Lets say that a Virus looks at  a users email configuration to find the MTA the user normally uses. While many Viri become their own SMTP server, many companys and ISPs are now blocking outbound SMTP that comes directly from a users machine unless it goes through their MTA (our company does that). There are only users of the one domain so no chance of cross-domain forgery... But the Spam or what ever that generated by the Virus going through the MTA is authorized, but not authentic.

--

Dennis Willson
taz(_at_)taz-mania(_dot_)com
taz(_at_)scubatech(_dot_)org

www.taz-mania.com

Ham: KA6LSW
GMRS: WPSJ953
SCUBA: Rescue, Wreck, Night, EANx, Nitrox Blender, UW Photographer, Equip, Altitude

Life should not be a journey to the grave with the intention of arriving safely in a nice looking and well preserved body, but rather to skid in broadside, thoroughly used up, totally worn out, and loudly proclaiming, "WOW! WHAT A RIDE!"


Sender Policy Framework: http://spf.pobox.com/ Archives at http://archives.listbox.com/spf-discuss/current/ Read the whitepaper! http://spf.pobox.com/whitepaper.pdf To unsubscribe, change your address, or temporarily deactivate your subscription, please go to http://v2.listbox.com/member/?listname=spf-discuss(_at_)v2(_dot_)listbox(_dot_)com