On Mon, 5 Feb 2007, Seth Goodman wrote:
For an MSA that has implemented appropriate technical restrictions, I
agree that the prospective SPF check is largely redundant.
It's important to state that. This works best for small systems with no
outbound authentication who wish to limit their users forging foreign
domains that publish SPF records.
In pymilter, internal PCs attempting to send with foreign domains
are labeled "zombies". Too many such forgeries, and that PC (IP) is
cut off from sending email. User has to run malware cleaning software
and write "I will not download free screensavers" on the blackboard
100 times before I reenable their email.
--
Stuart D. Gathman <stuart(_at_)bmsi(_dot_)com>
Business Management Systems Inc. Phone: 703 591-0911 Fax: 703 591-6154
"Confutatis maledictis, flammis acribus addictis" - background song for
a Microsoft sponsored "Where do you want to go from here?" commercial.
-------
Sender Policy Framework: http://www.openspf.org/
Archives at http://archives.listbox.com/spf-discuss/current/
To unsubscribe, change your address, or temporarily deactivate your
subscription,
please go to http://v2.listbox.com/member/?list_id=735