spf-discuss
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: Forwading/Redirecting: The problem as I see it....

2005-07-08 11:49:53
from [Julian Mehnle] [Permanent Link] 
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Stuart D. Gathman wrote:

On Fri, 8 Jul 2005, Julian Mehnle wrote:

That is not very useful, because the forwarder can have many MTAs -
all with different HELOs.  And the set is subject to change.


Whitelisting can include wildcards, like *.mailout.forwarder.com or
even *.forwarder.com.


And SPF already has the machinery for that and more.  Why not use it?
True, it is not a MAIL FROM identity, but it is a "virtual" MAIL FROM
identity - the one that would be used if MAIL FROM were rewritten.


I was talking about SPF checks of the HELO identity: 1. SPF-verify HELO 
identity, 2. apply white-list against verified HELO identity, possibly 
using wildcards (depending on the white-list entries). :-)
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.1 (GNU/Linux)

iD8DBQFCzsrRwL7PKlBZWjsRArlhAJ9L9njlXIauR9eVErujwulsfQl5kQCgmC2V
f5l2zbbvRyGVD0qsoq1m7TQ=
=nDhn
-----END PGP SIGNATURE-----
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  RE: SPF Validation Tools - Yet Another One, Scott Kitterman
Next by Date:  Andy Newton reports: SPF Adoption on the Rise, wayne
Previous by Thread:  Re: Forwading/Redirecting: The problem as I see it...., Stuart D. Gathman
Next by Thread:  Re: Forwading/Redirecting: The problem as I see it...., David Woodhouse
Indexes:  [Date] [Thread] [Top] [All Lists]