Navigation
User login
Quote
Benjamin Franklin
Either write something worth reading or do something worth writing.
SMTP+SPF
Mon, 10/06/2003 - 11:39 — kebernet
There is a new draft RFC out called SMTP+SPF (Sender Permitted From). Oddly enough, it sound very much like what I have said we need for a while, minus some IP spoofing proof encryption. Basically, the system works like this:
You used the "TXT" DNS record on a reverse lookup to list a group of IP addresses that are auhorized to send email with a "from" address in your domain, thusly:
*.133.149.66.in-addr._smtp_client.example.com. TXT "SPF=allow" *.149.66.in-addr._smtp_client.example.com. TXT "SPF=allow"
*.66.in-addr._smtp_client.example.com. TXT "SPF=allow"
*.in-addr._smtp_client.example.com. TXT "SPF=deny"
This gives the receiver and easy was to veryify that an authorized SMTP server sent the message. Granted, this will mess up the way I use SMTP personally a bit, but hey, whatever works at this point.
SpamAssasin will be implementing SPF with version 2.70.
This work is licensed under a Creative Commons License.
1998-2008 temple of the screaming penguin
TotSP Search
Community
Chatter
- Thanks
2 days 16 hours ago - Extremely annoying
3 days 19 hours ago - Actually, it's worse than I
1 week 3 days ago - That's the CODEHAUS maven
1 week 4 days ago - New Error
1 week 4 days ago - Very Nice
1 week 5 days ago - That spider drawing is
1 week 6 days ago - I am a huge Java developer
3 weeks 10 hours ago - Its coooooooool.. Java
3 weeks 19 hours ago - Perfect!
3 weeks 1 day ago
Comments
Re: SMTP+SPF
this is good stuff, thanks for thinking up this thing so someone could grab it and turn it into an RFC!