Re: [spfbis] Local macros strike again, was Suggestion...
Hector Santos <hsantos@isdg.net> Fri, 20 January 2012 08:40 UTC
Return-Path: <hsantos@isdg.net>
X-Original-To: spfbis@ietfa.amsl.com
Delivered-To: spfbis@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 7AC1421F85F9 for <spfbis@ietfa.amsl.com>; Fri, 20 Jan 2012 00:40:23 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -0.822
X-Spam-Level:
X-Spam-Status: No, score=-0.822 tagged_above=-999 required=5 tests=[AWL=-0.823, BAYES_50=0.001]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 8YkVuj2iy6ub for <spfbis@ietfa.amsl.com>; Fri, 20 Jan 2012 00:40:18 -0800 (PST)
Received: from mail.santronics.com (groups.winserver.com [208.247.131.9]) by ietfa.amsl.com (Postfix) with ESMTP id 4433121F85F6 for <spfbis@ietf.org>; Fri, 20 Jan 2012 00:40:17 -0800 (PST)
DKIM-Signature: v=1; d=isdg.net; s=tms1; a=rsa-sha1; c=simple/relaxed; l=3736; t=1327048810; h=Received:Received: Received:Received:Message-ID:Date:From:Organization:Subject:To: List-ID; bh=YIyS44ymwNsjAHSKms+LsQ54xIA=; b=oan+c90A4z5v98Hu14JJ p92/FyVCyqJgrjg7zk/EserxBK87BovZlLi+nbOQD/erlSiU1XG6xouJPJaSvNTL dTYSEt+TX5Hte/EUrjghbi6R0ofrATz5GE+Yht9oflnjx0m7Ms4a/flKG7mN/Wvc YC9nskic0hxDCo78uI/3ZcY=
Received: by winserver.com (Wildcat! SMTP Router v6.4.454.1) for spfbis@ietf.org; Fri, 20 Jan 2012 03:40:10 -0500
Authentication-Results: dkim.winserver.com; dkim=pass header.d=beta.winserver.com header.s=tms1 header.i=beta.winserver.com; adsp=pass policy=all author.d=isdg.net asl.d=beta.winserver.com;
Received: from beta.winserver.com ([208.247.131.23]) by winserver.com (Wildcat! SMTP v6.4.454.1) with ESMTP id 250687931.44950.3388; Fri, 20 Jan 2012 03:40:09 -0500
DKIM-Signature: v=1; d=beta.winserver.com; s=tms1; a=rsa-sha256; c=simple/relaxed; l=3736; t=1327048624; h=Received:Received: Message-ID:Date:From:Organization:Subject:To:List-ID; bh=xPnAEAH v/fY1wWiyaLOJBaQps5q2diF30tzqkC2Poyk=; b=xVdL6yDk7DrjCBLWUHmyaYZ UmKw4BHVqFlbDE7eI7BCmNEYo6/gl2S4K+Wr8UFsAHCZRMQBZB1mHoZkictZY3Fu eoW7cOegMBpsNQCAGExEr23PyS0ADVTTeafguvAouWX1y3S1I3beGHkXzqKDuGM3 Y9jL22jiefvwpPPOwxQc=
Received: by beta.winserver.com (Wildcat! SMTP Router v6.4.454.1) for spfbis@ietf.org; Fri, 20 Jan 2012 03:37:04 -0500
Received: from [192.168.1.101] ([99.3.147.93]) by beta.winserver.com (Wildcat! SMTP v6.4.454.1) with ESMTP id 849647064.6255.3804; Fri, 20 Jan 2012 03:37:03 -0500
Message-ID: <4F192869.2060101@isdg.net>
Date: Fri, 20 Jan 2012 03:40:09 -0500
From: Hector Santos <hsantos@isdg.net>
Organization: Santronics Software, Inc.
User-Agent: Thunderbird 2.0.0.24 (Windows/20100228)
MIME-Version: 1.0
CC: spfbis@ietf.org
References: <F5833273385BB34F99288B3648C4F06F19C6C15673@EXCH-C2.corp.cloudmark.com> <4F1190BB.9080202@mail-abuse.org> <4F16A2FB.3070709@isdg.net> <60329510.PUQKVUEzYr@scott-latitude-e6320>
In-Reply-To: <60329510.PUQKVUEzYr@scott-latitude-e6320>
Content-Type: text/plain; charset="UTF-8"; format="flowed"
Content-Transfer-Encoding: 7bit
X-Comment: Missing recipient address appended by wcSMTP router.
To: spfbis@ietf.org
Subject: Re: [spfbis] Local macros strike again, was Suggestion...
X-BeenThere: spfbis@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: SPFbis discussion list <spfbis.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/spfbis>, <mailto:spfbis-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/spfbis>
List-Post: <mailto:spfbis@ietf.org>
List-Help: <mailto:spfbis-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/spfbis>, <mailto:spfbis-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 20 Jan 2012 08:40:23 -0000
Scott Kitterman wrote: >> Who? >> >> This must be completed isolated. >> >> I have a hard time understanding why would any system screw around >> with a guessing game of "SPF default record" with completely not >> possibility for actual accuracy and yet, expect there would not be >> problem or rather begin to use this as some basis that something is >> broken about SPF! I don't get it Doug. This would is already random. >> I see no way to presume there is a default SPF record without falling >> into trouble. >> >> Now, if it was fundamentally the case that Senders *always* used an >> machine among the Receiveer network of MX host IP addresses, then I >> can see some default rules. Sure. But that is not reality. There is >> no requirement that a Sender machine must be part of any RECEIVER (MX) >> network. This applies closer to smaller systems but not with larger >> network systems and not even with smaller systems. >> >> I just don't see why you think this has any value. > > The SPF "Best Guess" approach was supported early in SPF development > (2003/2004) as a method to help bootstrap the protocol. At the time, it was > clearly described as something that was only even potentially useful for > making positive assertions. If someone based SPF rejections on a Best Guess > record they were very mistaken. I don't doubt this happened, but I don't > think it's fundamentally an issue with the SPF protocol. Well, I recall something about, but since it only made sense to me from a LOCAL POLICY and accumulated KNOWN of domain information, not applied to anonymous system, we must of been on different wave lengths. There is no logic when its applied to anonymous senders and the only conceivable rule is one based on an integrated multi-behavior MTA sender/receiver "All-In-One" machine/network. In other words, something like our own system that is a single MTA with multiple rules, receiver/router/sender. Its a MSA when the user authenticates and mail is received, its a MDA when the user DOES NOT authenticate for local mail only reception and a thread does the routing for remote mail feeding it to the sender thread(s). So such a rule would apply to us, but I assume it to be the case for other systems. I agree, if such a MX/24 best guess rule is applied, it can only be used, at best, for passing. But if one tries to work a fail or soft results, IMO, that is completely wrong to do since there is simply no requirement for the sender/receiver to be associated via MX. MX is for receiving only. Its not about sending. I recall the IETF-SMTP crowd a while back making a strong point of this to me when I was winging an ideal of using MX names formatted with sender IP address/mask information - a way to get information about the senders using an existing set of information most likely to exist for correct SMTP setups. I only thought about it because our own system is all-in-one multi-threaded receiver/sender/router. So for 99% of our SMTP customers, the sender IP is the going to be among the MX IPs they have setup. > The most that 4408bis might want to deal with the practice is to explicitly > tell people not to make up SPF records for senders. +1, good idea because it doesn't make sense for anonymous senders. However, I do see value when you known the sender but they don't have an SPF record and you know for sure they have a fixed DOMAIN::IP association as I pointed out to Doug with DIP rules. Just a method to white list known senders with known domain/ip associations. I don't know if that should mentioned or not. But its not SPF, IMO. -- Hector Santos, CTO http://www.santronics.com http://santronics.blogspot.com
- [spfbis] Suggestion for an additional deliverable Murray S. Kucherawy
- Re: [spfbis] Suggestion for an additional deliver… Dave CROCKER
- Re: [spfbis] Suggestion for an additional deliver… SM
- Re: [spfbis] Suggestion for an additional deliver… Scott Kitterman
- Re: [spfbis] Suggestion for an additional deliver… Commerco WebMaster
- Re: [spfbis] Suggestion for an additional deliver… Hector Santos
- Re: [spfbis] Suggestion for an additional deliver… Dotzero
- Re: [spfbis] Suggestion for an additional deliver… Hector Santos
- Re: [spfbis] Suggestion for an additional deliver… Hector Santos
- Re: [spfbis] Suggestion for an additional deliver… Alessandro Vesely
- Re: [spfbis] Suggestion for an additional deliver… Scott Kitterman
- Re: [spfbis] Suggestion for an additional deliver… Murray S. Kucherawy
- Re: [spfbis] Suggestion for an additional deliver… Murray S. Kucherawy
- Re: [spfbis] Suggestion for an additional deliver… Murray S. Kucherawy
- Re: [spfbis] Suggestion for an additional deliver… Murray S. Kucherawy
- Re: [spfbis] Suggestion for an additional deliver… Scott Kitterman
- Re: [spfbis] Suggestion for an additional deliver… Dave CROCKER
- [spfbis] Augmenting SPF with additional Email tec… Hector Santos
- Re: [spfbis] Suggestion for an additional deliver… Alessandro Vesely
- Re: [spfbis] Suggestion for an additional deliver… Stuart Gathman
- Re: [spfbis] Suggestion for an additional deliver… Alessandro Vesely
- Re: [spfbis] Suggestion for an additional deliver… Hector Santos
- Re: [spfbis] Suggestion for an additional deliver… Murray S. Kucherawy
- Re: [spfbis] Suggestion for an additional deliver… Murray S. Kucherawy
- Re: [spfbis] Suggestion for an additional deliver… Scott Kitterman
- [spfbis] A-R vs SPF-R, was Suggestion for an addi… Alessandro Vesely
- Re: [spfbis] Suggestion for an additional deliver… Douglas Otis
- Re: [spfbis] Suggestion for an additional deliver… Hector Santos
- Re: [spfbis] Suggestion for an additional deliver… Hector Santos
- Re: [spfbis] Suggestion for an additional deliver… Douglas Otis
- Re: [spfbis] Suggestion for an additional deliver… Hector Santos
- Re: [spfbis] Suggestion for an additional deliver… Douglas Otis
- Re: [spfbis] Suggestion for an additional deliver… Hector Santos
- Re: [spfbis] Local macros strike again, was Sugge… Scott Kitterman
- Re: [spfbis] Suggestion for an additional deliver… Philip Gladstone
- Re: [spfbis] Suggestion for an additional deliver… Stuart D Gathman
- Re: [spfbis] Suggestion for an additional deliver… Hector Santos
- Re: [spfbis] Suggestion for an additional deliver… Douglas Otis
- Re: [spfbis] Suggestion for an additional deliver… Hector Santos
- Re: [spfbis] Suggestion for an additional deliver… Douglas Otis
- [spfbis] HardFail Marking vs HardFail Rejects Hector Santos
- Re: [spfbis] Suggestion for an additional deliver… Alessandro Vesely
- [spfbis] Local macros strike again, was Suggestio… Alessandro Vesely
- Re: [spfbis] Local macros strike again, was Sugge… Hector Santos
- Re: [spfbis] Local macros strike again, was Sugge… Philip Gladstone
- Re: [spfbis] Local macros strike again, was Sugge… Douglas Otis
- Re: [spfbis] Local macros strike again, was Sugge… Scott Kitterman
- Re: [spfbis] Local macros strike again, was Sugge… Philip Gladstone
- Re: [spfbis] Local macros strike again, was Sugge… Alessandro Vesely
- Re: [spfbis] Local macros strike again, was Sugge… Hector Santos
- Re: [spfbis] Local macros strike again, was Sugge… Derek Diget
- Re: [spfbis] Local macros strike again, was Sugge… Murray S. Kucherawy
- Re: [spfbis] Local macros strike again, was Sugge… Hector Santos
- Re: [spfbis] Local macros strike again, was Sugge… Hector Santos
- [spfbis] Section 10.1 Processing Limits Hector Santos
- Re: [spfbis] Section 10.1 Processing Limits Scott Kitterman
- Re: [spfbis] Section 10.1 Processing Limits Derek Diget
- Re: [spfbis] Section 10.1 Processing Limits Hector Santos
- Re: [spfbis] Section 10.1 Processing Limits Scott Kitterman
- Re: [spfbis] Section 10.1 Processing Limits Hector Santos
- Re: [spfbis] Section 10.1 Processing Limits Scott Kitterman
- Re: [spfbis] Section 10.1 Processing Limits Murray S. Kucherawy
- Re: [spfbis] Section 10.1 Processing Limits Hector Santos
- Re: [spfbis] Section 10.1 Processing Limits Scott Kitterman
- [spfbis] SPF metrics, was Limits Alessandro Vesely
- Re: [spfbis] Section 10.1 Processing Limits Hector Santos
- Re: [spfbis] Section 10.1 Processing Limits Hector Santos
- Re: [spfbis] Local macros strike again, was Sugge… Douglas Otis
- Re: [spfbis] Local macros strike again, was Sugge… Hector Santos
- Re: [spfbis] Local macros strike again, was Sugge… Douglas Otis
- Re: [spfbis] Local macros strike again, was Sugge… Hector Santos
- Re: [spfbis] Local macros strike again, was Sugge… Philip Gladstone
- Re: [spfbis] Local macros strike again, was Sugge… Scott Kitterman
- Re: [spfbis] Local macros strike again, was Sugge… Murray S. Kucherawy
- Re: [spfbis] Local macros strike again, was Sugge… Hector Santos
- Re: [spfbis] Local macros strike again, was Sugge… Hector Santos
- Re: [spfbis] Local macros strike again, was Sugge… Hector Santos
- Re: [spfbis] Local macros strike again, was Sugge… Hector Santos
- Re: [spfbis] Local macros strike again, was Sugge… Philip Gladstone
- Re: [spfbis] Local macros strike again, was Sugge… Commerco WebMaster