On 25-Jun-06, at 5:51 PM, John D. Hardin wrote:
On Sun, 25 Jun 2006, Gino Cerullo wrote:
Does it do any good to complain to the ISP that accepted the
original email
with a forged email address that uses a domain name that I
administer?
Personally, nowadays I believe bouncing messages back to the alleged
sender
That's not what he's asking. He wants to know whether asking ISPs to
implement SPF checks (where they don't yet check SPF) will work.
I'm not convinced that is what he meant but he wasn't clear about it
so I wont argue with you on that point.
I still think trying to contact those ISPs directly will be an
exercise in futility but if he wants to try it certainly wont hurt.
My vote would be for setting SPF for HARDFAIL as soon as is feasible,
after all dealing with forgery is what SPF was designed for. Sure,
unless those ISPs are checking against SPF it may not help but that
situation is getting better all the time as more and more SPF is
being deployed.
So how do we increase the use of SPF checks?
Ahhh! The million dollar question and one probably better suited to
the SPF mailing lists...but since you asked.
Evangelize. If you believe in a technology and it's benefits talk to
people about it and hopefully your passion will rub off on them and
they will turn around and do the same. Word-of-mouth is one of the
best ways to spread...well...'The Word' but it works best when you
are talking to people who value your opinion or at least are asking
for it directly.
That's why I feel an email from a stranger on the other side of the
world whose tired of dealing with you bouncing messages back to him
probably will have little influence. Although, it may make the person
on the other side of that email aware of a tech they may not
otherwise be aware of, that's why I also say it couldn't hurt.
--
Gino Cerullo
Pixel Point Studios
21 Chesham Drive
Toronto, ON M3M 1W6
T: 416-247-7740
F: 416-247-7503
