On Wed, 2024-10-16 at 18:44 +0000, Dave Crocker wrote: > On 10/16/2024 11:22 AM, Michael Orlitzky via mailop wrote: > > The killer feature of SPF is that I can tell somebody how to set it up > > over the phone. Most small businesses send mail from one or two places, > > and usually, I can google the appropriate "include:" for them. Once SPF > > is passing, whitelisting by domain is relatively safe. > > > > By comparison, setting up DKIM is anywhere from hard to impossible. > > > 1. If SPF's primary benefit is being trivial, then limit it to trivial. > Strip out everything that goes beyond a trivial scenario.
I didn't say it was trivial, I said it was easy. In any case, I'm not sure what "limit it to trivial" means. > 2. The benefit you cite is the usual one for the sender, but a) it > ignores issues with receivers, and b) it ignores multi-hop scenarios. What issues? A priori, recipients ignore it. It doesn't get much easier than that. > 3. DKIM -- right. So difficult, almost no one uses it. And it's not as > if the rest of email operations have gotten complicated, right? Two wrongs make a right? I'm doing free tech support. With SPF, it takes a few minutes and someone who knows the GoDaddy password. With DKIM, it would take days and would require admin access to the sender's infrastructure and someone on the other end who is technically competent. Who, if he existed, would have obviated the need for this scenario to play out. _______________________________________________ mailop mailing list mailop@mailop.org https://list.mailop.org/listinfo/mailop
