On Tue, 13 Mar 2007, John A. Martin wrote:
Scott> On Monday 12 March 2007 18:52, John A. Martin wrote:
>> Would someone please explain precisely what is meant at
>> <http://www.openspf.org/Best_Practices/Forwarding> by the
>> following and perhaps provide an illustrative example?
>>
>> If your implementation allows it, also check SPF for a
>> "pretend" MAIL FROM that your forwarder could use. This
>> verifies that the forwarded mail really came from your trusted
>> forwarder.
>>
The explanation in pymilter says:
# Connections that get an SPF pass for a pretend MAIL FROM of
# postmaster(_at_)sometrustedforwarder(_dot_)com skip SPF checks for the real
MAIL FROM.
# This is for non-SRS forwarders. It is a simple implementation that
# is inefficient for more than a few entries.
trusted_forwarder = careerbuilder.com
And that is a real life example used by the HR person at a client.
Careerbuilder forwards email from job applicants without changing the
mail from.
--
Stuart D. Gathman <stuart(_at_)bmsi(_dot_)com>
Business Management Systems Inc. Phone: 703 591-0911 Fax: 703 591-6154
"Confutatis maledictis, flammis acribus addictis" - background song for
a Microsoft sponsored "Where do you want to go from here?" commercial.
-------
Sender Policy Framework: http://www.openspf.org/
Archives at http://archives.listbox.com/spf-discuss/current/
To unsubscribe, change your address, or temporarily deactivate your
subscription,
please go to http://v2.listbox.com/member/?list_id=735