spf-discuss
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: [spf-discuss] SPF2.5 brainstorm - source + executables

2006-08-10 15:02:20
from [Andy Bakun] [Permanent Link] 
On Thu, 2006-08-10 at 17:30 -0400, Stuart D. Gathman wrote:

Perhaps SPF2.5 could do away with include, redirect and friends, and
define "source" records separate from "executable" records.  The
executable records would have IP addresses only, and a TTL computed
from source documents/records.  SPF2.5 checkers would only query 
"executable" records.  SPF2.5 compilers, on the other hand, would
read the source records - and source records would include text files
fetched via HTTP and v=spf1 records.

The more I think about it, the more I like that idea.  So shoot holes in
it quick before I start promoting it.


An SPF2.5 "compiler" could grab record contents from wherever it sees
fit.  I see no reason to codify this in any kind of standard.  It could
read IP address from stdin if the programmer so desired.  This is an
implementation detail.

It may make sense for a certain DNS provider or ISP to tell their
customers "put your SPF record data in a data file on your web servers,
because when we run the compiler that writes the zone files, that's
where we read it's input from".  But that's independent of the serving
and evaluation of those records.  In fact this could happen now and
would be a service that DNS server providers might be better off
supporting than allowing direct record editing via web interface.

If the "compiler" is going to be built into the name server to "flatten"
SPF records to ip4: lists automatically, then it may make sense, but
this isn't a "compiler" (at least how I think of compiler -- compiling
is an off-line, async process).  In this situation, this would be a
feature and implementation detail of the name server software.

How do we feel about the possible fact that a significant number of the
domain owners who can only put files on a web server (because of skill,
experience, or provider restrictions) are also most likely not qualified
to properly list their outgoing mail servers?

-- 
Andy Bakun <spf2(_at_)leave-it-to-grace(_dot_)com>

-------
Sender Policy Framework: http://www.openspf.org/
Archives at http://archives.listbox.com/spf-discuss/current/
To unsubscribe, change your address, or temporarily deactivate your 
subscription, 
please go to 
http://v2.listbox.com/member/?listname=spf-discuss(_at_)v2(_dot_)listbox(_dot_)com
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  [spf-discuss] SPF2.5 brainstorm - source + executables, Stuart D. Gathman
Next by Date:  [spf-discuss] Re: SPF2.5 brainstorm - source + executables, Frank Ellermann
Previous by Thread:  [spf-discuss] SPF2.5 brainstorm - source + executables, Stuart D. Gathman
Next by Thread:  [spf-discuss] Re: SPF2.5 brainstorm - source + executables, Frank Ellermann
Indexes:  [Date] [Thread] [Top] [All Lists]