Re: Bug#257644: ITP: libspf2 -- Sender Policy Framework library, written in C
On 2004-07-05 Josselin Mouette <joss@debian.org> wrote:
[...]
> If I understand correctly, the SPF prevents any email
> from being sent outside the corresponding IP addresses of the sender's
> domain. Am I wrong?
SPF allows to specify in the DNS txt-records of domain which hosts
may send mail with this domain in MAIL FROM:. Whether receiving
mailservers enforce this is in the respective administator's domain.
> If this is true, this is one of the most stupid ideas I've seen for
> fighting spam.
SPF is not for fighting spam it is a solution for domain-owners to
restrict usage of the domain for mail to specific hosts.
i.e. I cannot send my favorite "microsoft sucks" mail with a
microsoft.com from address, or some chinese spammer cannot use from
@aol.com without going through AOL's mailserver, or I cannot use the
addr@isp1.com when I am connected via isp2.com.
The connection SPF<-->spam in press probably originates from the fact
that /currently/ many viruses and spammers regularily use innocent
third party e-mail addresses in MAIL FROM:. - A practise that SPF
would partially stop if it was used everywhere.
If you want to know more about this please consult these websites:
http://spf.pobox.com/ (official site) especially
http://spf.pobox.com/faq.html
http://spf.pobox.com/objections.html
http://www.taugh.com./mp/lmap.html
http://homepages.tesco.net./~J.deBoynePollard/FGA/smtp-spf-is-harmful.html
cu andreas
--
"See, I told you they'd listen to Reason," [SPOILER] Svfurlr fnlf,
fuhggvat qbja gur juveyvat tha.
Neal Stephenson in "Snow Crash"
Reply to: