Hi
I have been looking for a SRS implimentaton to use with sendmail.
I Like the concept of sendmail.srs especially in in its SRS-socketmap form.
It looks like an elegant solution.
Having read through the notes on the site
http://srs-socketmap.info/index.html
I find myself with a couple of outstanding questions that a quick look
at the code has not answered.
Where a server is the MSA for multiple domains, will it still work?
I am thinking that it will send with the envelope from address set to
the domain you set fwdomain too.
Now as long as this is one of our local domains any reply
will come back to us and be unpacked.
What is bothering me is that I have at leased 1 server that sends mail
from several domains with different SPF records, each domain has a
different set of servers listedi, though the server in question appears
in all sets.
If SRS signing changes the domain how will this affect SPF checking.
I am thinking that the recipient will check on the rewritten domain and
as long as the server is listed in the SPF record for that domain,
all will be well.
In several places discussing SRS they have talked about, using it with a
list of secrets, where the signing uses the first secret in the current
list, but the reversal process will work if any match.
Given the sometimes lengthy period before replies come back, if you
change the secret used for outbound messages you probably want to accept
replies based on the old secret for at leased a fortnight.
It may be my lack of experience with perl but looking at the code for
srs-socketmap it looks like you can only set a single secret with the line
my $secret = 'whateverfloatsyourboat';
Does anyone have any sugestion or experience of using SRS with using
this or any other implimantations with sendmail?
Yours hopefully
J. David Rye
*************************************************************************
This e-mail is confidential and may be legally privileged. It is intended
solely for the use of the individual(s) to whom it is addressed. Any
content in this message is not necessarily a view or statement from Road
Tech Computer Systems Limited but is that of the individual sender. If
you are not the intended recipient, be advised that you have received
this e-mail in error and that any use, dissemination, forwarding,
printing, or copying of this e-mail is strictly prohibited. We use
reasonable endeavours to virus scan all e-mails leaving the company but
no warranty is given that this e-mail and any attachments are virus free.
You should undertake your own virus checking. The right to monitor e-mail
communications through our networks is reserved by us
Road Tech Computer Systems Ltd. Shenley Hall, Rectory Lane, Shenley,
Radlett, Hertfordshire, WD7 9AN. - VAT Registration No GB 449 3582 17
Registered in England No: 02017435, Registered Address: Charter Court,
Midland Road, Hemel Hempstead, Hertfordshire, HP2 5GE.
*************************************************************************
-------------------------------------------
Sender Policy Framework: http://www.openspf.org
Modify Your Subscription: http://www.listbox.com/member/
Archives: http://www.listbox.com/member/archive/1129/=now
RSS Feed: http://www.listbox.com/member/archive/rss/1129/
Powered by Listbox: http://www.listbox.com
I have been looking for a SRS implimentaton to use with sendmail.
I Like the concept of sendmail.srs especially in in its SRS-socketmap form.
It looks like an elegant solution.
Having read through the notes on the site
http://srs-socketmap.info/index.html
I find myself with a couple of outstanding questions that a quick look
at the code has not answered.
Where a server is the MSA for multiple domains, will it still work?
I am thinking that it will send with the envelope from address set to
the domain you set fwdomain too.
Now as long as this is one of our local domains any reply
will come back to us and be unpacked.
What is bothering me is that I have at leased 1 server that sends mail
from several domains with different SPF records, each domain has a
different set of servers listedi, though the server in question appears
in all sets.
If SRS signing changes the domain how will this affect SPF checking.
I am thinking that the recipient will check on the rewritten domain and
as long as the server is listed in the SPF record for that domain,
all will be well.
In several places discussing SRS they have talked about, using it with a
list of secrets, where the signing uses the first secret in the current
list, but the reversal process will work if any match.
Given the sometimes lengthy period before replies come back, if you
change the secret used for outbound messages you probably want to accept
replies based on the old secret for at leased a fortnight.
It may be my lack of experience with perl but looking at the code for
srs-socketmap it looks like you can only set a single secret with the line
my $secret = 'whateverfloatsyourboat';
Does anyone have any sugestion or experience of using SRS with using
this or any other implimantations with sendmail?
Yours hopefully
J. David Rye
*************************************************************************
This e-mail is confidential and may be legally privileged. It is intended
solely for the use of the individual(s) to whom it is addressed. Any
content in this message is not necessarily a view or statement from Road
Tech Computer Systems Limited but is that of the individual sender. If
you are not the intended recipient, be advised that you have received
this e-mail in error and that any use, dissemination, forwarding,
printing, or copying of this e-mail is strictly prohibited. We use
reasonable endeavours to virus scan all e-mails leaving the company but
no warranty is given that this e-mail and any attachments are virus free.
You should undertake your own virus checking. The right to monitor e-mail
communications through our networks is reserved by us
Road Tech Computer Systems Ltd. Shenley Hall, Rectory Lane, Shenley,
Radlett, Hertfordshire, WD7 9AN. - VAT Registration No GB 449 3582 17
Registered in England No: 02017435, Registered Address: Charter Court,
Midland Road, Hemel Hempstead, Hertfordshire, HP2 5GE.
*************************************************************************
-------------------------------------------
Sender Policy Framework: http://www.openspf.org
Modify Your Subscription: http://www.listbox.com/member/
Archives: http://www.listbox.com/member/archive/1129/=now
RSS Feed: http://www.listbox.com/member/archive/rss/1129/
Powered by Listbox: http://www.listbox.com