On Thu, May 04, 2006 at 07:39:44PM -0400, Terry Fielder wrote:
Sorry, no. The whole point of putting the IP in the SPF record is that
prior to the cutover to redundant connection the IP is a match, so you
never do a DNS lookup on the A record (you return SPF pass or whatever
mode assigned)
For mail that is going to PASS, and for implementations that do
not prefetch, true.
But SPF was designed to combat forgery so I think I am not way off
base to assume I actually do need to fetch those A records as the
ip4 mechanism did not match. Once those A records are in my cache,
the domain has a problem as those A records point to the original
(now severed) link.
Alex
-------
Sender Policy Framework: http://www.openspf.org/
Archives at http://archives.listbox.com/spf-discuss/current/
To unsubscribe, change your address, or temporarily deactivate your
subscription,
please go to
http://v2.listbox.com/member/?listname=spf-discuss(_at_)v2(_dot_)listbox(_dot_)com