On 7/16/23 9:37 AM, Thomas Cameron wrote:
It does clarify, ...
:-)
... but unfortunately, it doesn't alleviate my concerns.
:-/
I totally understand why SPF et al. are good ideas.
:-)
But I swear, I feel
like they introduce darned near as many problems as they "solve."
I question the veracity of that statement.
Specifically is SPF /introducing/ a *new* problem? Or is SPF
/highlighting/ an *existing* problem?
It sounds to me like:
1) you really do want to detect (and prevent) other servers from
sending email w/ an RFC5321.MailFrom address in your domain.
2) you want messages send to be able to be resent by specific other
servers.
IM(ns)HO #2 is in conflict with, if not diametrically opposed to, #1.
If other servers, like mailing lists, didn't send messages using your
RFC5321.MailFrom address, then this wouldn't be a problem.
Who's really doing the wrong thing here? You specifying you want
stringent email security or someone else pretending to be you?
But that's another rant. Thanks for your explanations.
Maybe.
Grant. . . .