Steffen Kaiser wrote:
> However, it is possible to notify end-users about this case. Once I
> placed the MAIL FROM into the subject, if the addresses differ, but this
> caused lots of grief with mailing lists.
> I wonder why so few MUAs show a notice, when Return-Path and From
> differs. - - Actu
>> Not really. SPF applies to envelope senders; people's mail clients
>> show the header senders. So you can have MAIL FROM:
>> and From: with an SPF pass. :-(
> However, it is possible to notify end-users about this case. Once I placed
> the MAIL FROM into the subject, if the addresses diff
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On Wed, 29 Jul 2009, David F. Skoll wrote:
Not really. SPF applies to envelope senders; people's mail clients
show the header senders. So you can have MAIL FROM:
and From: with an SPF pass. :-(
However, it is possible to notify end-users about
- wrote:
It's useful as a message REJECTION tool. It can also useful when the
method passes, in that we have a responsible IP address to complain
to or about.
SPF and DKIM are also useful as one component of whitelist data, because
an SPF pass means you can trust the envelope sender's domain
SPF isn't an anti-spam tool. It is an anti-FORGERY tool. It would only
eliminate forged (or "spoofed") spam, not spam that doesn't hide its origin.
It has some situations that it doesn't detect:
- Cross-user forgeries (within the same domain).
- Cross-domain forgeries (when multiple domains
On Wed, Jul 29, 2009 at 22:07, David F. Skoll wrote:
> Paul Murphy wrote:
>
>> Proper implementation of SPF or a similar system across all mail domains
>> would cut spamming by 99% overnight,
>
> No, it wouldn't.
>
> Spammers would publish SPF records for their throwaway domains. We
> already see
Not really. SPF applies to envelope senders; people's mail clients
show the header senders. So you can have MAIL
FROM:
and From: with an SPF pass. :-(
You know, I just figured this out myself. I had thought I had my record
incorrect. Pretty damn pointless IMO.
Regards,
KAM
_
Paul Murphy wrote:
> Proper implementation of SPF or a similar system across all mail domains
> would cut spamming by 99% overnight,
No, it wouldn't.
Spammers would publish SPF records for their throwaway domains. We
already see this quite a bit.
> and would remove almost all of the risk from
8 matches
Mail list logo