In <200611021724(_dot_)51840(_dot_)scott(_at_)kitterman(_dot_)com> Scott
Kitterman <scott(_at_)kitterman(_dot_)com> writes:
One clear error is that he postulates that messages are checked at
the MDA and in the MUA both. That lets him double everything.
But the SPF records *could* be checked both places, and at each
forwarder hop.
Say the attacker can set up a chain of 100 forwarding hops where
a(_at_)a(_dot_)com forwards to b(_at_)b(_dot_)com which forwards to
c(_at_)c(_dot_)com, etc. If each
of those forwarders checks the SPF record and yet none of them do SRS,
then *poof*, you have an amplification factor of 100.
Of course, Heisenberg's Uncertainty Principle says that there is also
a chance that I could suddenly appear on mars.
-wayne
-------
Sender Policy Framework: http://www.openspf.org/
Archives at http://archives.listbox.com/spf-discuss/current/
To unsubscribe, change your address, or temporarily deactivate your
subscription,
please go to
http://v2.listbox.com/member/?listname=spf-discuss(_at_)v2(_dot_)listbox(_dot_)com