-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Graham Beneke wrote:
[...]
That said - something that I am noticing is spammers taking advantage of
very open SPF policies of some domains. Some as bad as +all!
[...]
How do we go about both educating the nieve admins as well as
encouraging them to make their records more focused and less prone to
abuse?
Blacklisting based on the domain is the first thing that comes to mind -
but I am not convinced that it is an ideal solution. Many of the current
RBL's have continuous problems dictating their policies for 'where the
line is drawn' and then trying to implement that without making both
senders and receivers of mail rather annoyed.
I think dynamic domain-based reputation systems with good feedback/
complaint features are the solution. If a domain authorizes "the world" to
send mail on their behalf, any abuse of that authorization is their
problem. However, as long as reputation systems refrain from pronouncing
"death penalties" (i.e. _permanent_ blacklistings), a domain owner will
always have the chance to fix their sender policy and regain a good
reputation.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)
iD8DBQFF6qhlwL7PKlBZWjsRAuAHAJ9CoJPyKISBOStv49Wv1vIb/SI0rgCg8WCf
/FTc041ey4duoOIczBYx4xk=
=rGxK
-----END PGP SIGNATURE-----
-------
Sender Policy Framework: http://www.openspf.org/
Archives at http://archives.listbox.com/spf-discuss/current/
To unsubscribe, change your address, or temporarily deactivate your
subscription,
please go to http://v2.listbox.com/member/?list_id=735