On Mon, 29 Jan 2007, Devin Ganger wrote:
Stuart D. Gathman wrote:
People requiring rDNS or worrying about spammers publishing "v=spf1 +all"
are apparently focused on IP reputation rather than domain reputation.
The whole point of the SPF project is to enable domain reputation.
How can I make a true determination of a domain's reputation (and a given
connection's right to benefit from that reputation) unless I can determine
whether that connection is allowed to use that domain?
If the domain put the connect IP address in their DNS for the HELO name,
or listed it in their SPF record for HELO or MAIL FROM, then they are
responsible for the connection. That is what SPF is all about.
You can try to isolate domain reputation and IP reputation, but out here in
the real world they're intertwined.
And if you want to whitelist some IPs for a customer, you need to keep
them updated. Man, those phone calls to update IPs are a nuisance!
Hey, maybe they could put the IPs in a DNS record under their domain!
That is what SPF (and HELO names) are all about - associating IPs
with email domains in an automatic way that is under the control
of the domain owner.
--
Stuart D. Gathman <stuart(_at_)bmsi(_dot_)com>
Business Management Systems Inc. Phone: 703 591-0911 Fax: 703 591-6154
"Confutatis maledictis, flammis acribus addictis" - background song for
a Microsoft sponsored "Where do you want to go from here?" commercial.
-------
Sender Policy Framework: http://www.openspf.org/
Archives at http://archives.listbox.com/spf-discuss/current/
To unsubscribe, change your address, or temporarily deactivate your
subscription,
please go to http://v2.listbox.com/member/?list_id=735