http://issues.apache.org/SpamAssassin/show_bug.cgi?id=4811
[EMAIL PROTECTED] changed:
What |Removed |Added
----------------------------------------------------------------------------
Status|RESOLVED |REOPENED
Resolution|INVALID |
------- Additional Comments From [EMAIL PROTECTED] 2006-02-28 14:54 -------
(In reply to comment #6)
> also -1. whitelist_from is trivially forgeable; whitelist_from_spf is
> rock-solid. Major difference in trustworthiness levels.
Ok. Then the change should be in whitelist_from rather than in
whitelist_from_spf. In particular:
whitelist_from should not result in delivery of provably forged mails.
If the alleged sender publishes spf records and the delivering relay is not
listed on them, the mail should not be delivered even if the from address is
whitelisted. The person using whitelist_from obviously was not intending to
receive forgeries.
------- You are receiving this mail because: -------
You are the assignee for the bug, or are watching the assignee.
