spf-discuss
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

[spf-discuss] Re: RPF explanation and examples

2006-11-16 01:48:49
from [Jason LEWIS] [Permanent Link] 
Stuart,

What you describe RPF (Receiver Policy Framework) is nothing more than
taking your local mail filters and posting it in the DNS so the spammers
can see what MAIL FROMs you are blocking and which ones you are not.  I
used to think this was a good idea, but now I agree with Julian: "I
think this kind of public disclosure is a security problem."  For this
to work properly, you will need to implement this at the input to your
inbox, which is at your ESP's MTAs.  If they can see who you're
blocking, so can the spammer.

Jason


Julian Mehnle <julian(_at_)mehnle(_dot_)net> 11/15/2006 1:37 PM >>>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Stuart D. Gathman wrote:

On Tue, 14 Nov 2006, Jason LEWIS wrote:

Just like MAIL FROM is different than From:, RCPT TO is different

than

To:.  RCPT TO means my local mail box.  Messages coming to me will
always be the same RCPT TO.  Therefore, why would I want to do

some

external check other than my local rules?


You wouldn't.  However, your 3rd party imap provider won't know your
local rules.  RPF is a way to communicate your local rules to your

3rd

party imap provider.


I think this kind of public disclosure is a security problem.


Another way would be for the imap provider to create a web

application

allowing you to login and enter your rules.


There are lots of better ways to automate this that don't imply public

disclosure of your personal policies.

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.5 (GNU/Linux)

iD8DBQFFW3p8wL7PKlBZWjsRArPuAJ4up0gytsy/fEvQMkYYcdr6yeNKiQCcCOSm
lix82Z5cSOvRLLsfbJ4/Kps=
=uJym
-----END PGP SIGNATURE-----

-------
Sender Policy Framework: http://www.openspf.org/ 
Archives at http://archives.listbox.com/spf-discuss/current/ 
To unsubscribe, change your address, or temporarily deactivate your
subscription, 
please go to http://v2.listbox.com/member/?list_id=735

-------
Sender Policy Framework: http://www.openspf.org/
Archives at http://archives.listbox.com/spf-discuss/current/
To unsubscribe, change your address, or temporarily deactivate your 
subscription, 
please go to http://v2.listbox.com/member/?list_id=735
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: [spf-discuss] Per/user policies in "Large Domains" (was Fixing Forwarding with RPF), Scott Kitterman
Next by Date:  Re: [spf-discuss] Per/user policies in "Large Domains" (was Fixing Forwarding with RPF), Stuart D. Gathman
Previous by Thread:  [spf-discuss] Re: RPF explanation and examples, Frank Ellermann
Next by Thread:  Re: [spf-discuss] Re: RPF explanation and examples, Stuart D. Gathman
Indexes:  [Date] [Thread] [Top] [All Lists]