On Montag, 26. September 2005 15:37 Herb Martin wrote: > 2) Some SMTP servers (but not enough) will check this > and disallow forged email from those authorized > servers
Where "some" is becoming bigger each month. I've seen a lot less joe-jobbing tries with our domains during the last months (we use SPF over a year now). I can remember receiving 3 e-mails of obviously joe-jobbing this year. So SPF helps (especially since even big ISPs like AOL use it). > SPF is the right thing to do -- but the benefits have > not yet reach their potential. Yes, but if he implements it, another small brick in the wall makes the force bigger :-) > He must also watch out for sneaky users "forwarding" their > email or using "other SMTP servers" with their email > address -- probably such (random) forwarding/sending > by users will be "unauthorized" as well. Yes, that can give headaches - I know it now - but it's worth the effort. mfg zmi -- // Michael Monnerie, Ing.BSc --- it-management Michael Monnerie // http://zmi.at Tel: 0660/4156531 Linux 2.6.11 // PGP Key: "lynx -source http://zmi.at/zmi2.asc | gpg --import" // Fingerprint: EB93 ED8A 1DCD BB6C F952 F7F4 3911 B933 7054 5879 // Keyserver: www.keyserver.net Key-ID: 0x70545879
pgp9OCWRDzsr5.pgp
Description: PGP signature
