>>And how you can know if site enforces that? And i don't mean guess, nor >>believe, but really **know** with particular message?
Since you on your domain are in control of SPF, you of course choose a provider you **know** enforces that. So you simply choose a provider who you trust enforces that as a domain owner. That’s why SPF exist. >>On my site, users can use only own address/aliases, but i can use any >>(including any domain)... Of course since you are administrator. Nothing strange with that. In the same way the admins at Lets Encrypt, VeriSign, Entrust - you name it, could tell their servers to issue a certificate for sebbe.eu without any approval. The CAA record lets you choose which providers you trust, in the same way SPF lets you choose the providers you trust. It all about trust. Choose providers you trust. Best regards, Sebastian Nielsen _______________________________________________ mailop mailing list mailop@mailop.org https://list.mailop.org/listinfo/mailop
