murthy+spf at teamon
Jul 19, 2004, 2:55 PM
Post #1 of 2
Use of exists mechansim in SPF
Isn't an MTA prone to forgery if they use 'exists' mechanism?
For example, say 'foo.com' domain implments 'exists' mechanism with an SPF record 'v=spf1 exists:foo.com -all' Can't an email forger send from any arbitrary IP address and say MAIL From: ceo [at] foo ?
Essentially, how is the MTA itself validated when 'exists' is used?
I must be missing something here.. what is it?
thanks a lot,
Archives at http://archives.listbox.com/spf-help/current/
To unsubscribe, change your address, or temporarily deactivate your subscription,
please go to http://v2.listbox.com/member/?listname=spf-help [at] v2