spf-discuss
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: [spf-discuss] SPFv3 idea: recipient domain macro for exists

2009-07-17 14:54:15
from [alan] [Permanent Link] 
At 19:09 17/07/2009  Friday, Stuart D. Gathman wrote:

On Fri, 17 Jul 2009, Michael Deutschmann wrote:


I had one idea on how a sender could cope with an unhandled forwarder
problem or unwhitelisted backup MX in some receivers, without completely
giving up the benefits of SPF fail:  Maintain an RHSBL of *recipient* domains
which do not handle SPF properly, and then use a ?exists mechanism to query
it and return neutral for matches, ahead of the -all or ~all sane recipients
will see.


A *great* idea.


a very useful idea
it gets my vote just for utility even if used for entirely different purpose a 
recipient address macro would be useful programatically as it does offer 
something unachievable in spf1



Sadly, when I looked up the RFC to see exactly how to write such an exists
line, I found it's impossible in SPFv1.  There are macros for the sender
local-part and domain, but nothing for the recipient.

So, I propose rectifying that in SPFv3.  We just need to add a new macro
that expands to the RCPT TO domain of an attempted SMTP transaction.  Might
as well add one for local-part, too.


Since everyone is shooting down my v3 ideas with "here's how you could
do it in v1", let me shoot yours down.  :-)  All(!) you have to do is
have your MTAs encode the sender in the helo name it uses when
transmitting the email.  For instance, assign an ID number to every
recipient in your "braindead" list.  Use BDnnnnnnnn.smtp.example.com 
as the HELO name in your MTA, where nnnnnnnn is the ID assigned to the
braindead recipient.


A I'm hoping its a joke
B the helo is invariant it should not change from one connection to the next 
and if it does the machine often triggers anti-bot detection systems
C most MTA's have no method to change the helo without restart
D then you have the headache of maintaining the A records for all thes helo's 
and the spf records for all these helo's {+CSV or any other record types that 
get used to validate HELO in the future}




-------------------------------------------
Sender Policy Framework: http://www.openspf.org
Modify Your Subscription: http://www.listbox.com/member/
Archives: https://www.listbox.com/member/archive/735/=now
RSS Feed: https://www.listbox.com/member/archive/rss/735/
Powered by Listbox: http://www.listbox.com
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: [spf-discuss] Feature list for SPFv3, Stuart D. Gathman
Next by Date:  Re: [spf-discuss] SPFv3 idea: recipient domain macro for exists, Stuart D. Gathman
Previous by Thread:  Re: [spf-discuss] SPFv3 idea: recipient domain macro for exists, Stuart D. Gathman
Next by Thread:  Re: [spf-discuss] SPFv3 idea: recipient domain macro for exists, Stuart D. Gathman
Indexes:  [Date] [Thread] [Top] [All Lists]