Hi,
Isn't an MTA prone to forgery if they use 'exists' mechanism?
For example, say 'foo.com' domain implments 'exists' mechanism with an SPF record 'v=spf1 exists:foo.com -all' Can't an email forger send from any arbitrary IP address and say MAIL From: ceo@foo.com ?
Essentially, how is the MTA itself validated when 'exists' is used?
I must be missing something here.. what is it?
thanks a lot,
Murthy Gorty.
-------
Archives at http://archives.listbox.com/spf-help/current/
Donate! http://spf.pobox.com/donations.html
To unsubscribe, change your address, or temporarily deactivate your subscription,
please go to http://v2.listbox.com/member/?listname=spf-help@v2.listbox.com
Isn't an MTA prone to forgery if they use 'exists' mechanism?
For example, say 'foo.com' domain implments 'exists' mechanism with an SPF record 'v=spf1 exists:foo.com -all' Can't an email forger send from any arbitrary IP address and say MAIL From: ceo@foo.com ?
Essentially, how is the MTA itself validated when 'exists' is used?
I must be missing something here.. what is it?
thanks a lot,
Murthy Gorty.
-------
Archives at http://archives.listbox.com/spf-help/current/
Donate! http://spf.pobox.com/donations.html
To unsubscribe, change your address, or temporarily deactivate your subscription,
please go to http://v2.listbox.com/member/?listname=spf-help@v2.listbox.com