> On 16 Oct 2024, at 19:22, Michael Orlitzky via mailop <mailop@mailop.org> > wrote: > > On Wed, 2024-10-16 at 16:00 +0000, Dave Crocker via mailop wrote: >> >> 7. The myth that SPF is simple to implement is because it is simple for >> a sender to create a basic SPF record. It does not mean that it is >> simple to create a more elaborate record, or to ensure that all >> authorized sending sites are list. Nor does it mean that it is simple >> for a receiver to provide fully-conformant processing. >> >> ... >> >> Please consider: If SPF were deprecated, was would be the actual, >> significant effects on email anti-abuse processes? > > The killer feature of SPF is that I can tell somebody how to set it up > over the phone. Most small businesses send mail from one or two places, > and usually, I can google the appropriate "include:" for them. Once SPF > is passing, whitelisting by domain is relatively safe.
That only works if you (and they) know what domain is being used in the 5321.from address or they’re not using bulk senders. Most senders don’t know that and all too many bulk sending platforms give the wrong information for the includes (although they’ve gotten a lot better about it). > By comparison, setting up DKIM is anywhere from hard to impossible. Our experiences are wildly different. laura -- The Delivery Expert Laura Atkins Word to the Wise la...@wordtothewise.com Delivery hints and commentary: http://wordtothewise.com/blog
_______________________________________________ mailop mailing list mailop@mailop.org https://list.mailop.org/listinfo/mailop
