spf-discuss
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: [spf-discuss] SPFv3 proposal: rawfail result

2011-02-09 12:40:42
from [Stuart D. Gathman] [Permanent Link] 
On Wed, 9 Feb 2011, Michael Deutschmann wrote:


On Tue, 8 Feb 2011, Stuart D. Gathman wrote:

Then maybe we should make it one.  It is a simpler and easier alternative to
deploying SRS (although more trouble for the final receiver).


It would work better to promulgate Sham SRS, which would avoid the
scalability problem of your hack.


As a less clueless than average email sender, I would much prefer 
having the email simply rejected by SPF fail to Sham SRS.  The DSN
from the forwarder would contain the new email, and I would simply resend to
that.  Sham SRS gives no notice of delivery problems (unless the forward
is the final hop).  I realize the average email user never actually reads DSNs,
so this is not a general solution.

What if there was a standard SMTP code for SPF fail?  Then a non-SRS forwarder
could easily send an end-user friendly DSN to facilitate resending
to the new email?


But this is a distraction from the question I originally pondered, which
is -- given a site that has whitelisted all its friendly incoming
forwards, yet is using a whitelisting heuristic that the forwarding
entities have not promised not to break, can it reject on an ordinary fail
when the whitelist engine says "not a trusted forward"?


I say "yes".  But I also realize that this is a judgement that
others may disagree with (not a black and white issue).  Keep in mind
that rejecting on SPF fail after alias forwarding is not such a horrible thing.
If the forwarder MTA is standards compliant, the user is notified of the new
address, and can resend.  At least the email doesn't go in the bit bucket.

-- 
              Stuart D. Gathman <stuart(_at_)bmsi(_dot_)com>
    Business Management Systems Inc.  Phone: 703 591-0911 Fax: 703 591-6154
"Confutatis maledictis, flammis acribus addictis" - background song for
a Microsoft sponsored "Where do you want to go from here?" commercial.


-------------------------------------------
Sender Policy Framework: http://www.openspf.org [http://www.openspf.org]
Modify Your Subscription: http://www.listbox.com/member/ 
[http://www.listbox.com/member/]

Archives: https://www.listbox.com/member/archive/735/=now
RSS Feed: https://www.listbox.com/member/archive/rss/735/2183229-668e5d0d
Modify Your Subscription: 
https://www.listbox.com/member/?member_id=2183229&id_secret=2183229-a7234b15
Unsubscribe Now: 
https://www.listbox.com/unsubscribe/?member_id=2183229&id_secret=2183229-98aa0fe6&post_id=20110209134011:04D8C03E-347C-11E0-9993-E7E594C3366C
Powered by Listbox: http://www.listbox.com
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: [spf-discuss] SPFv3 proposal: rawfail result, Michael Deutschmann
Next by Date:  [spf-discuss] Yahoo mail and Gmail policy explanation?, Martin Jericho
Previous by Thread:  Re: [spf-discuss] SPFv3 proposal: rawfail result, Michael Deutschmann
Next by Thread:  Re: [spf-discuss] SPFv3 proposal: rawfail result, Stuart D. Gathman
Indexes:  [Date] [Thread] [Top] [All Lists]