spf-discuss
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

RE: [spf-discuss] solving the forwarding problem

2005-09-14 02:33:23
from [Mark] [Permanent Link] 


-----Original Message-----
From: David [mailto:david(_at_)ols(_dot_)es] 
Sent: zaterdag 10 september 2005 13:56
To: spf-discuss(_at_)v2(_dot_)listbox(_dot_)com
Subject: Re: [spf-discuss] solving the forwarding problem




- Receivers doing SPF checks, if that header is present, should
 interpret it this way:


You are totally missing the point of checking SPF.
The message can be rejected before it is received.

Nothing in the DATA part will help, there will not be a DATA part.


I'd have to agree with Frank, here. A 'solution' that requires a DATA
phase is, if not out of bounds for SPF, then certainly against the
early-out philosophy of doing pre-DATA checks based on the 'envelope
dialogue', so to speak. Also, after DATA you are limited in the response
codes you can return (you cannot send 550 after DATA, for instance).

Moreover, except for headers added by your own MTA -- and those of your
trusted ISP, perhaps -- you would need a digitially signed message to
trust the full header. The two are generally mutually exclusive: either
you go the route of digital signing, or you do SPF (or something similar).
There is no point in doing both.


... this is only for spf
results neutral and softfail, where spf does not allow to
bounce before DATA.


You're taking a few shortcuts on reality, here. :) It is written:
"Receiving software SHOULD NOT reject the message based solely on this
result, but MAY subject the message to closer scrutiny than normal." There
is no mention, or inference even, of an injunction against rejecting
before the DATA phase. "closer scrutiny than normal" ere refers to checks
against reputation services, etc. And may include a DATA phase, at the
discretion of the receiver. But nowhere, however well you search the
place, does SPF mandate that you are not allowed to reject before DATA.

- Mark 
 
        System Administrator Asarian-host.org
 
---
"If you were supposed to understand it,
we wouldn't call it code." - FedEx

-------
Sender Policy Framework: http://spf.pobox.com/
Archives at http://archives.listbox.com/spf-discuss/current/
To unsubscribe, change your address, or temporarily deactivate your 
subscription, 
please go to 
http://v2.listbox.com/member/?listname=spf-discuss(_at_)v2(_dot_)listbox(_dot_)com
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: [spf-discuss] FTC email authentication test results, johnp
Next by Date:  RE: [spf-discuss] solving the forwarding problem, Mark
Previous by Thread:  RE: [spf-discuss] Alias forwarder as associate MX, Seth Goodman
Next by Thread:  Re: [spf-discuss] solving the forwarding problem, Theo Schlossnagle
Indexes:  [Date] [Thread] [Top] [All Lists]