On Mon, Mar 08, 2004 at 09:34:04AM -0800, Jonathan Tai wrote: > On Mon, 2004-03-08 at 09:04, Bart Schaefer wrote: > > On Mon, 8 Mar 2004, Ilan Aisic wrote: > > > > > Before I go and implement it in my DNS, I'd like to solicit opinions about > > > it from the list. > > > > "It can't hurt but it might not help much." > > > > SPF is designed to solve a specific problem: Joe-jobbing, that is, the > > forgery of your domain-part in the sender addresses of spam. > > > > True, but the more domains implement it... the more it helps. >
The more domains implement it, the more DNS spoofing attacks will rapidly come to the fore again. Let's not forget that SPF has yet to be vetted by the IETF. Implementation seems to be skipping the entire technical evaluation process. -- Mark C. Langston Sr. Unix SysAdmin [EMAIL PROTECTED] [EMAIL PROTECTED] Systems & Network Admin SETI Institute http://bitshift.org http://www.seti.org
