[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: SPF - exim4 + debian.org

* Josselin Mouette (joss@debian.org) wrote:
> Le sam 24/07/2004 à 10:25, Jiri Klouda a écrit :
> > do you think it would be possible if the debian.org
> > and lists.debian.org defined the SPF (Sender Policy
> > Framework) text in the DNS records?
> No, no and no. SPF is a completely broken idea, and it cannot work *at
> all* for domains like debian.org. That would mean listing all the IPs
> from which developers can send mail.

This isn't entirely accurate.  This message is sent from a
non-debian.org domain and wouldn't have any problem w/ SPF, aiui.  SPF
checks the envelope From, not the From: line.  My envelope From isn't
ever my debian.org address.

> And again, I strongly disagree with enabling SPF in our default MTA. We
> shouldn't even link it with any SPF library, as that would encourage
> such bad practice.

Now that's just silly.  MySQL is a terrible non-SQL compliant
'database' which barely has ACID.  We don't discourage linking against
it for these reasons.


Attachment: signature.asc
Description: Digital signature

Reply to: