On Sat, 3 Feb 2007, Scott Kitterman wrote:
On Saturday 03 February 2007 21:34, Michael Deutschmann wrote:
But most domains don't publish SPF -all, or SPF at all, today. Faced
with an ambivalent SPF result (NONE, NEUTRAL, or SOFTFAIL), a forwarder
can neither reasonably refuse such e-mail outright, nor assume that
bouncing the message will be safe.
That's true, but they can also be assured that if they forward it it
won't get rejected for SPF downstream, so SPF makes this neither better
nor worse.
I suppose one could do SRS if the message is SPF PASS, reject it if it's SPF
FAIL and do traditional forwarding if it's and other SPF result. This would
avoid the making it worse part and actually reduce backscatter to some
degree.
Not necessarily. Just because the result was NEUTRAL or SOFTFAIL when
the forwarder checks incoming mail, does not mean the result can't be FAIL
when the ultimate recipient checks the same message against the forwarder's
outgoing mail IP.
So in some cases you need SRS to get through, but still can't safely
bounce.
---- Michael Deutschmann <michael(_at_)talamasca(_dot_)ocis(_dot_)net>
-------
Sender Policy Framework: http://www.openspf.org/
Archives at http://archives.listbox.com/spf-discuss/current/
To unsubscribe, change your address, or temporarily deactivate your
subscription,
please go to http://v2.listbox.com/member/?list_id=735