spf-discuss
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: [spf-discuss] Re: Fixing Forwarding with RPF

2006-11-14 09:14:05
from [K.J. Petrie (Instabook)] [Permanent Link] 
On Tuesday 14 November 2006 14:04, Scott Kitterman wrote:

On Tue, 14 Nov 2006 13:52:26 +0000 "K.J. Petrie (Instabook)"

<kjpetrie(_at_)instabook(_dot_)com> wrote:

On Tuesday 14 November 2006 11:55, Scott Kitterman wrote:

On Tuesday 14 November 2006 05:58, K.J. Petrie (Instabook) wrote:

If you didn't send it, and the return address really is forged, it
only has a chance of bouncing to you if my ISP (foolishly) decides to
bounce SPF fails, in other words if SPF IS checked.


Bouncing/Not bouncing isn't an SPF issue.  It's an operations issue.


With


the limited exception of to verified sending addresses (e.g. SPF Pass,


but


bounced for other reasons), no one should send bounces.  The designed
behavior is to reject the message during SMTP, so there is no bounce
backscatter.

Scott K


I agree. (However, I have had mail bounced to me because it failed SPF at


the


recipient's mailbox, so some ISPs do.)


I'm not suprised, but it's everything to do with poor ISP operational
practice and nothing to do with SPF.

Scott K


Yes, and it is implied by section 9.5 (top of page 43) but not spelt out. That 
section also suggests "internal" MTAs should not carry out SPF checks. From 
an SPF point of view, once mail has reached my forwarder, it could be argued 
it has been delivered to my domain, and the forwarding is an "internal" 
process. So by wanting SPF to spell out that I should be able to control (and 
in this case turn off) SPF on my mailbox, I am only asking it to confirm I 
should be enabled to carry out what the standard requires on what I know (but 
my ISP cannot be expected to know) is really an internal transaction.

These are, as you have said before, best practice issues, rather than 
technical issues, but they're not necessarily obvious to ISPs it seems. So 
the standard gives a certain amount of guidance, and it's just a question as 
to whether that guidance should be a little clearer.

KJP.


-------
Sender Policy Framework: http://www.openspf.org/
Archives at http://archives.listbox.com/spf-discuss/current/
To unsubscribe, change your address, or temporarily deactivate your
subscription, please go to http://v2.listbox.com/member/?list_id=735


-------
Sender Policy Framework: http://www.openspf.org/
Archives at http://archives.listbox.com/spf-discuss/current/
To unsubscribe, change your address, or temporarily deactivate your 
subscription, 
please go to http://v2.listbox.com/member/?list_id=735
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: [spf-discuss] Re: Fixing Forwarding with RPF, Stuart D. Gathman
Next by Date:  Re: [spf-discuss] Re: Fixing Forwarding with RPF, K.J. Petrie (Instabook)
Previous by Thread:  Re: [spf-discuss] Re: Fixing Forwarding with RPF, Scott Kitterman
Next by Thread:  Re: [spf-discuss] Re: Fixing Forwarding with RPF, Stuart D. Gathman
Indexes:  [Date] [Thread] [Top] [All Lists]