Re: [Asrg] Re: Why SPF?

["Alan DeKok" <aland at ox.org>]

Claus Assmann <ca+asrg at esmtp.org> wrote:
> 2. It forces people to use the servers which are "authorized to
> send" for their domains. It takes away the responsibility from the
> legitimate owner of the individual address and puts the "control"
> solely into the hands of the domain owner.

  ... who owns the domain name, controls DNS, and thus already
controls which users can *receive* email to addresses at the domain,
and what kind of mail they can receive.

  Wanting to control who uses the domain name is also a legitimate
desire of the domain name owner.  See the design of DNS.

> Again some freedom lost for "security"? (you know the quote...)

  Domain owners can allow their users to do whatever they want with
their domain name.  SPF allows this.  The goal of SPF et. al., if you
hadn't already noticed, was to prevent *others* from fraudulently
claiming association with the domain.

  As PHB pointed out a while back, probably 99% or more of the people
on the net can only send mail using their ISP's accounts, to their
ISP's mail server.  This is due to the design of the mail readers
they're using.

  Do the needs of a tiny fraction of net users to send mail from
anywhere outwheigh the needs of almost everyone else to prevent
forgeries?

  Alan DeKok.

_______________________________________________
Asrg mailing list
Asrg at ietf.org
https://www1.ietf.org/mailman/listinfo/asrg