[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: [Accountability!] RE: SPF abused by spammers

To: "MARID" <ietf-mxcomp@xxxxxxx>
Subject: RE: [Accountability!] RE: SPF abused by spammers
From: "Gordon Fecyk" <gordonf@xxxxxxxxx>
Date: Tue, 14 Sep 2004 09:12:39 -0500
List-archive: <http://www.imc.org/ietf-mxcomp/mail-archive/>
List-id: <ietf-mxcomp.imc.org>
List-unsubscribe: <mailto:ietf-mxcomp-request@imc.org?body=unsubscribe>
Sender: owner-ietf-mxcomp@xxxxxxxxxxxx
Thread-index: AcSaYXlIfLUHFsqjQOiLow5z27iVHAAAv99w
Thread-topic: [Accountability!] RE: SPF abused by spammers

> That's the point -- it's a hop-by-hop scheme. It's _all_ 
> about how much
> you trust the one mail server which is sending you mail. 
> Where before we
> had IP-based blacklists, now there are domain-based 
> blacklists, without
> which SPF/SenderID is largely not useful.

I would live with domain based blacklisting.  It's easier to manage currently
than IP based blacklisting, until reputation services start to take hold or
other measures could apply to domains - named entities - instead of numbers.

I'm more interested in knowing that example.com is accountable for mail sent
in its name.  I can deal with whether example.com is worthy or not later.

-- 
PGP key (0x0AFA039E): <http://www.pan-am.ca/consulting@xxxxxxxxxxxxx>
Sometimes it's hard to tell where the game ends and where reality bites,
er, begins. <http://vmyths.com/resource.cfm?id=50&page=1>

Follow-Ups:
- RE: [Accountability!] RE: SPF abused by spammers
  - From: Douglas Otis
- RE: [Accountability!] RE: SPF abused by spammers
  - From: David Woodhouse

Prev by Date: Re: co-chair judgment of consensus related to last call period of 23-Aug-2004 to 10-Sept-2004
Next by Date: RE: TECH-ERROR: SenderID sets recomendation for forwarders that are not compatible with RFC 2822
Previous by thread: Re: [Accountability!] RE: SPF abused by spammers
Next by thread: RE: [Accountability!] RE: SPF abused by spammers
Index(es):
- Date
- Thread