On Mon, 5 Feb 2007, Scott Kitterman wrote:
There is no benifit to checking MAIL FROM after a HELO fail if the receiver
policy is to reject on HELO FAIL. I think that last sentence would have been
much better if it said:
I disagree. This is a receiver policy. It is perfectly possible that
HELO fails and MAIL FROM passes. MAIL FROM should get priority in that
case. For instance, the HELO domain may have a screwed up SQL, recently
have changed IPs. Or the MAIL FROM policy can say "+ptr:bigisp.com", and
bigisp.com uses "bigisp.com" as HELO on every MTA used for customers,
despite only authorizing MTAs used for company mail. (I.e. they
forgot SPF is checked for HELO.)
--
Stuart D. Gathman <stuart(_at_)bmsi(_dot_)com>
Business Management Systems Inc. Phone: 703 591-0911 Fax: 703 591-6154
"Confutatis maledictis, flammis acribus addictis" - background song for
a Microsoft sponsored "Where do you want to go from here?" commercial.
-------
Sender Policy Framework: http://www.openspf.org/
Archives at http://archives.listbox.com/spf-discuss/current/
To unsubscribe, change your address, or temporarily deactivate your
subscription,
please go to http://v2.listbox.com/member/?list_id=735