alan wrote:
all receivers MUST whitelist non-SRS forwarders [...]
I disagree with this view. The burden is on forwarders to work out how to do
their job. In order of increasing compliance and difficulty, they can
0) forward naively and be blocked,
1) forward with a blank MAIL FROM,
2) forward with static (or VERPed) senders if they really care,
3) deploy SRS, or
4) get whitelisted at the target host.
The last point implies an agreement, thereby complying also with privacy laws
that require an explicit consent to use someone else's email address. It is
more difficult because the software to automate it does not exist yet, AFAIK.
err forwarders and receivers are working for one person the user {they should
both be complying with their wishes}
Yeah, when they're reasonable wishes...
the user should they choose to use a forwarder to get their address A to forward to their address B
the reciever should have the option available to the user to whitelist mail comming from addressA's servers to their addressB
{this option should be implemented by provider B or have a public policy stating they won't accept forwards}
_How_ they accept whitelisting would also be a policy. It can go
anywhere from whitelisting an IP, to providing a specific
userid/password pair for the forwarder to use SUBMIT. None of those
can be easily automated, that's why I listed them last.
if the provider of addressB doesn't provide this option it is that policy that
is responsible for lost email not the forwarders
{the forwarder can choose to deply SRS to get around this policy, blank
MAIL-FROM is a bonehead idea frankly}
What's wrong with a blank bounce address? If nobody is going to care
for bounces, it's perfect. Otherwise, the forwarder should consider
whether concealing the user's target address is the purpose of setting
up the forwarding. In that case, bouncing from the target is even less
advisable.
if the reciever of addreess B refuses forwards at that point the user should
choose another provider to receive their forwarded mail or choose not to
forward all address' to one pickup point
The latter is usually the best solution. Most modern mail client can
keep parallel connections to multiple IMAP/POP servers, so the
advantage of gathering everything to a single pickup point is not obvious.
-------------------------------------------
Sender Policy Framework: http://www.openspf.org
Modify Your Subscription: http://www.listbox.com/member/
Archives: https://www.listbox.com/member/archive/735/=now
RSS Feed: https://www.listbox.com/member/archive/rss/735/
Powered by Listbox: http://www.listbox.com