IETF Logo Mail Archive

Re: [spfbis] Updated charter - final review

Hector Santos <hsantos@isdg.net> Thu, 02 February 2012 21:31 UTC

Return-Path: <hsantos@isdg.net>
X-Original-To: spfbis@ietfa.amsl.com
Delivered-To: spfbis@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 1533421F85EF for <spfbis@ietfa.amsl.com>; Thu, 2 Feb 2012 13:31:36 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -0.833
X-Spam-Level:
X-Spam-Status: No, score=-0.833 tagged_above=-999 required=5 tests=[AWL=-0.834, BAYES_50=0.001]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id mIfOFUoKVINp for <spfbis@ietfa.amsl.com>; Thu, 2 Feb 2012 13:31:35 -0800 (PST)
Received: from ntbbs.santronics.com (winserver.com [208.247.131.9]) by ietfa.amsl.com (Postfix) with ESMTP id D71F821F85EE for <spfbis@ietf.org>; Thu, 2 Feb 2012 13:31:34 -0800 (PST)
DKIM-Signature: v=1; d=isdg.net; s=tms1; a=rsa-sha1; c=simple/relaxed; l=2079; t=1328218289; h=Received:Received: Received:Received:Message-ID:Date:From:Organization:Subject:To: List-ID; bh=pQWSJV4YBTpx/XAm/K3TbvbSyik=; b=DjFf8gCMDi0+SR2bYZBL LeKAPPjDdAz9xO3e6wapqYXDaKfAyOkv/mef4/iD89t36psOHZrbOET4ww8fQHdc hnQQkNySoTpWyNVkTA287jwn/qUy0eoA4cUFfIYrSJVF66nMCVnmx4VnGh0EWR1d P3+skDGfjDGuOx9mbMZZRIg=
Received: by winserver.com (Wildcat! SMTP Router v6.4.454.1) for spfbis@ietf.org; Thu, 02 Feb 2012 16:31:29 -0500
Authentication-Results: dkim.winserver.com; dkim=pass header.d=beta.winserver.com header.s=tms1 header.i=beta.winserver.com; adsp=pass policy=all author.d=isdg.net asl.d=beta.winserver.com;
Received: from beta.winserver.com ([208.247.131.23]) by winserver.com (Wildcat! SMTP v6.4.454.1) with ESMTP id 1420152967.63904.3180; Thu, 02 Feb 2012 16:31:28 -0500
DKIM-Signature: v=1; d=beta.winserver.com; s=tms1; a=rsa-sha256; c=simple/relaxed; l=2079; t=1328218081; h=Received:Received: Message-ID:Date:From:Organization:Subject:To:List-ID; bh=tcrIU8O mU5z9oUGCB7KiwIZ08rcfOLL87nqIaxH91LM=; b=oA6PqRRtkUjbflYyd8bMfLV 5c64an6Xi3GDKwtlpUOKBeyxyt1LN6xLnfLtKqcnR+ArXhXoMfTwd1ahS9IBSY86 NA7Q33BZoFLBKjL0APt3GRZcMbGP2mmQ4cruAn2FzJqj8jRUnOfn8Xc/xSRTfcFt UD4KA1tU+4+xnesOFhTU=
Received: by beta.winserver.com (Wildcat! SMTP Router v6.4.454.1) for spfbis@ietf.org; Thu, 02 Feb 2012 16:28:01 -0500
Received: from [192.168.1.101] ([99.3.147.93]) by beta.winserver.com (Wildcat! SMTP v6.4.454.1) with ESMTP id 2019103626.11521.4576; Thu, 02 Feb 2012 16:28:00 -0500
Message-ID: <4F2B00B6.7030009@isdg.net>
Date: Thu, 02 Feb 2012 16:31:34 -0500
From: Hector Santos <hsantos@isdg.net>
Organization: Santronics Software, Inc.
User-Agent: Thunderbird 2.0.0.24 (Windows/20100228)
MIME-Version: 1.0
CC: spfbis@ietf.org
References: <4F28DBB7.5070101@qualcomm.com> <4F29E395.3020100@mail-abuse.org> <5905d04c-42eb-42f0-b580-1fb654cfe5af@email.android.com> <4F2A11E7.10409@mail-abuse.org> <f775e7ec-6c68-4d41-ac5d-9c2b8dd13965@email.android.com> <4F2AED29.3010902@mail-abuse.org>
In-Reply-To: <4F2AED29.3010902@mail-abuse.org>
Content-Type: text/plain; charset="UTF-8"; format="flowed"
Content-Transfer-Encoding: 7bit
X-Comment: Missing recipient address appended by wcSMTP router.
To: spfbis@ietf.org
Subject: Re: [spfbis] Updated charter - final review
X-BeenThere: spfbis@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: SPFbis discussion list <spfbis.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/spfbis>, <mailto:spfbis-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/spfbis>
List-Post: <mailto:spfbis@ietf.org>
List-Help: <mailto:spfbis-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/spfbis>, <mailto:spfbis-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 02 Feb 2012 21:31:36 -0000

Douglas Otis wrote:

> Fortunately, a
> majority of large providers do not use SPF for message acceptance 
> because they do not wish to deal with complaints arising from 
> assumptions the SMTP Mail From parameter fully describes the path of a 
> message in conjunction with SPF records ending in "-all".

Did you ever consider they were not candidates to use SPF?

I always viewed SPF benefited private user domains, companies, of any 
size, institutions, etc, where there is less to no unknown variables 
in their networking.

But I think that is all depends on your definition for "Large 
Providers."  FaceBook.com and gmail.com can be viewed as "very large" 
Email Providers.  Facebook.com, I presume has a very large pool of 
outbound senders and it has a well defined network with a -ALL final 
result.

On the other hand, gmail.com with its ?ALL is a major overhead and 
resource "waster" - its completely useless for gmail.com to use 
UNKNOWN condition.  Nothing good comes from it:

    MATCH    - IP is on the GMAIL Network - Whoopie!
    NO MATCH - IP is not on the GMAIL NETWORK

In both cases, abuse can and still occurs but with the latter, its 
where major abuse would be with bad guys using gmail.com with a 
wasteful record, and worse, it is always two lookups for what is most 
likely a wasteful yield.

At least with Facebook.com, there is a measurable yield. Its 
protecting itself from any foreign abuse.

Recently, I got a smile when I saw my old employer Mobil Oil (now as 
Exxon Mobil) corporate domain has a HARD FAIL SPF Record!

Processes with hard failure detection mechanism is where the maximum 
benefit is found. A PASS or anything else still generally requires 
even more filter checks and even if you couple it with reputation or 
scoring,  it is still not deterministic unlike a hard fail.

Any system operation, large or small, that can not establish a well 
defined network was never really a candidate for SPF - I think we 
always knew that.


-- 
Hector Santos, CTO
http://www.santronics.com
http://santronics.blogspot.com

v2.23.0 | Report a Bug | By Email