At 11:27 27-02-2008, Russell Jones wrote:
That doesn't make sense. Maybe I am misunderstanding this. From openspf.org:
What does SPF actually DO?
Suppose a spammer forges a hotmail.com address and tries to spam you.
They connect from somewhere other than Hotmail.
When his message is sent, you see MAIL FROM:
<<mailto:[EMAIL PROTECTED]>[EMAIL PROTECTED]>, but
you don't have to take his word for it. You can ask Hotmail if the
IP address comes from their network.
That's the return-path.
If what you said is right, why does SPF only look at the return-path
address and not the From: address? Nobody pays attention to
return-path, they only look at From to see who their mail client
says the email address is from.
If SPF was set to look up the address in the From: header, messages
you send through this mailing list would be rejected as they don't
come from your mail server.
Regards,
-sm