[119978] in North American Network Operators' Group
AW: AW: SPF Configurations
daemon@ATHENA.MIT.EDU (Andre Engel)
Sat Dec 5 15:54:52 2009
From: "Andre Engel" <andre.engel@fhe3.com>
To: <johnl@iecc.com>
In-Reply-To: <alpine.BSF.2.00.0912041947210.34487@simone.lan>
Date: Sat, 5 Dec 2009 21:53:54 +0100
Cc: nanog@nanog.org
Errors-To: nanog-bounces+nanog.discuss=bloom-picayune.mit.edu@nanog.org
John,
> -----Urspr=FCngliche Nachricht-----
> Von: John R. Levine [mailto:johnl@iecc.com]
> Gesendet: Samstag, 5. Dezember 2009 01:54
> An: Andre Engel
> Cc: nanog@nanog.org
> Betreff: Re: AW: SPF Configurations
>=20
> >> Right. The only major mail system that pays attention to SPF is
> >> Hotmail, but there are enough small poorly run MTAs that use it =
that
> >> an SPF record which lists your outbounds and ~all (not -all) can be
> >> marginally useful to avoid bogus rejections of your mail.
> >
> > For example :
> > [ various large ISPs that publish SPF ]
>=20
> Perhaps this is a language problem. In English, "publishes" is not a
> synonym for "pays attention to." As I said, you need to publish SPF
> to get mail into Hotmail. That's why people do it.
As I said im almost german :-)
=20
Some major providers ,1&1 for example, assigned their customers the
"responsibility" to "pay attention on SPF" for getting mails into their
boxes.(decision between suspicious or not) =20
> > I know there is a problem so far with forwarded emails but there is
> also a
> > solution :
> > [ hoary SRS proposal to change every SMTP server in the world to =
make
> them
> > match what SPF does ]
>=20
> Sigh.
I do not want to change every SMTP servers in the world. I just gonna =
show
an useful option .-)
> > Every time a mail arrives that is an SRS address the password and
> timestamp
> > could be checked, and faked or outdated recipients could be =
rejected.
>=20
> You might want to look at BATV, which has nothing to do with SPF, but
> I have found is quite useful for recognizing spam blowback.
Sure ! For instance If your are providing an mail cluster for your =
customer
bills, a newsletter server or a cooperated
mail cluster and you know that you are sending emails only to receivers
email boxes BATV is indeed a awesome tool.
=20
But if you are performing a shared mail cluster for your webhosting or =
your
Dial in customers which are using for instance some special kinds of =
mailing
lists maybe you need a additional solution.
>From a reputation perspective Id like the idea to combine a set of anti =
spam
tools if it is useful.
Indeed MAAWG is not "the badest place" to learn about.
> R's,
> John
>=20
> PS:
>=20
> > This message (including any attachments) is the property of FHE3 and
> may
> > contain confidential or privileged information. Unauthorized use of
> this
> > communication is strictly prohibited and may be unlawful. If you =
have
> > received this communication in error, please immediately notify the
> sender
> > by reply e-mail and destroy all copies of the communication and any
> > attachments.
>=20
> Our policy is to send messages with confidentiality notices to all of
> your competitors.
Sure! Im here to learn *** .-)
Cheers
Andre=20
--
Andre Engel
Consulting Program Director,=20
Email and Cyber Intelligence Services "..no space left on the
device/Kein Weltraum links auf dem Ger=E4t"
FHE3 GmbH P: +49 721 869 5907
Scheffelstr. 17a M: +49 160 962 44476=20
76135 Karlsruhe
andre.engel@fhe3.com
http://www.fhe3.com/
Amtsgericht Mannheim, HRB 702495
Umsatzsteuer-Ident: DE254677931
Gesch=E4ftsf=FChrer: Peter Eisenhauer, Michael Feger, Dimitrij Hilt
***
This email is distributed in the hope that it will be useful, but =
WITHOUT
ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or
FITNESS FOR A PARTICULAR PURPOSE ,...
