On 10/15/2017 07:39 PM, John Levine wrote:
See the paragraph about forged domains and whitelists in the original message.
*chuckle*
Okay.
I feel like having each forwarding host use SRS with it's own FQDN as
the from domain -and- publishing an SPF record for the host with -ALL
covers that.
However, given what I think I've learned about your opinion of SPF -ALL,
I can see why you say what you say.
To each his / her own.
It's just you. I talk to people who run large mail systems, and
without exception they tell me that they do not reject on spf -all
other perhaps a plain -all which means someone sends no mail at all..
The false positive rate would just be too high.
I doubt that it's just me. I may well be in the extreme minority. But
I find it hard to believe that it's just me. (Disregard if you were
re-using the words that I poorly chose.)
Wow, you're the optimist.
I am, but I think that's independent of this.
If you tell me that you will only send email from given location(s) and
that I should treat everything from anywhere else as suspect, that's
exactly what I'm going to do.
I believe that the onus is on you to either adhere to what you say, or
change what you say to reflect your new sending location(s).
I believe in Taylor Mali's "policy about honesty and ass-‐kicking: if
you ask for it, then I have to let you have it."
Link - What Teachers Make
- https://taylormali.com/poems/what-teachers-make/
If you put "-ALL" in your SPF record, I'm going to reject messages
purportedly from you that fail your SPF record. ;-)
--
Grant. . . .
unix || die
_______________________________________________
dmarc mailing list
[email protected]
https://www.ietf.org/mailman/listinfo/dmarc
