On Thu, 12 Jul 2012, Martin Gregorie wrote:
I'd suggest that any SPF record containing '+all' and possibly '?all' too, should trigger an SPF_PERMISSIVE rule rather than SPF_PASS so we can distinguish an authorised server in a tightly controlled domain from servers claiming to be part of a domain that doesn't give a damn.
...which is pretty much where we started. :) -- John Hardin KA7OHZ http://www.impsec.org/~jhardin/ jhar...@impsec.org FALaholic #11174 pgpk -a jhar...@impsec.org key: 0xB8732E79 -- 2D8C 34F4 6411 F507 136C AF76 D822 E6E6 B873 2E79 ----------------------------------------------------------------------- End users want eye candy and the "ooo's and aaaahhh's" experience when reading mail. To them email isn't a tool, but an entertainment form. -- Steve Lake ----------------------------------------------------------------------- 4 days until the 67th anniversary of the dawn of the Atomic Age
