[Top] [All Lists]

Re: Hole in spfmilter 0.95

2005-08-21 16:23:19
Daniel Taylor wrote:

in the fine tradition of accomodating broken senders most
MTA's will accept it.

So far so bad, but SPF won't make this worse, you just get
NONE if the input is invalid.  We discussed this here, but
Julian's proposal to PermError any invalid input came a bit
late for v=spf1.  We should revive it for a future v=spf1.1

I am beginning to believe that simply tightening up MTA's
so that they will reject random garbage instead of trying
to make allowances for brokenness will do more for
eliminating forgery than SPF.

<g>  Test it if you can (no users screaming etc.)  Bye, Frank