On Thu, 2006-09-28 at 11:05 -0700, Loren Wilton wrote: > > Apparently they have removed SPF records after publishing them once. > > Thats a stupid idea IMHO. Today I am forced to TEMP FAIL earthlink ids > > whenever there is a spam attack on my servers > > SPF can be a pain for a number of reasons that have been discussed > endlessly. I suspect Dirtlink found them to be effectively useless. > > Why not try using domainkeys instead? > > DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws; > s=dk20050327; d=earthlink.net; > b=FB4IOaniCvpDwkx5cYm2jFWe8LB9zRfxL9FHzbhv1JHyGSVrA0o4mttb3jjbU4C3; > > h=Message-ID:Date:From:Reply-To:To:Subject:Cc:Mime-Version:Content-Type:Content-Transfer-Encoding:X-Mailer:X-ELNK-Trace:X-Originating-IP; > > Loren
Darn, I dont want to again get into SPF debates. Assume I am using domain keys and catching all spams forged from earthlink , still I am scanning the mails. Anyway that is already happening today. SA is catching spams from earthlink( forged ?) but when you scan a huge number of mails you would like to be able to reject forged mails straight after "mail from:". That is what SPF lets you do and that works. No wonder a lot of spammers have stopped forging hotmail or msn because most of those mails dont even get thru the MTA. And a majority of the forged spams I still get is from earthlink or yahoo. Thanks Ram
