[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Asrg] Re: Yet another attempt to fix forwarding

To: asrg at ietf.org
Subject: [Asrg] Re: Yet another attempt to fix forwarding
From: "Frank Ellermann" <nobody at xyzzy.claranet.de>
Date: Wed, 30 Jan 2008 21:41:48 +0100
List-archive: <http://www1.ietf.org/pipermail/asrg>
List-help: <mailto:asrg-request@ietf.org?subject=help>
List-id: Anti-Spam Research Group - IRTF <asrg.ietf.org>
List-post: <mailto:asrg@ietf.org>
List-subscribe: <https://www1.ietf.org/mailman/listinfo/asrg>, <mailto:asrg-request@ietf.org?subject=subscribe>
List-unsubscribe: <https://www1.ietf.org/mailman/listinfo/asrg>, <mailto:asrg-request@ietf.org?subject=unsubscribe>
Organization: <http://purl.net/xyzzy>
References: <47A01A8A.6030502@tana.it> <DFA34DBE-C0F1-4168-9125-26C65C356845@mail-abuse.org>
Reply-to: Frank Ellermann <hmdmhdfmhdjmzdtjmzdtzktdkztdjz at gmail.com>, Anti-Spam Research Group - IRTF <asrg at ietf.org>

Douglas Otis wrote:

> It seems rather ironic SPF's intended purpose was to direct  
> culpability to the provider's customer (the email-address owner).

The "owners" of a reverse path are the hops adding info to it,
today in essence limited to the envelope sender address as
accepted by the MSA.  

> In addition, schemes directing culpability toward provider's
> customers are in conflict with the general protection of personal
> privacy.

There is no such thing as "culpability" of senders in SPF.  If
folks want it they can arrange for a working envelope sender
address based on their Message-ID or using BATV, but that has
nothing at all to do with privacy.

> Only the provider should be able to determine a message source,
> and therefore only the provider should be held responsible for
> controlling abuse.

The provider is not responsible for forgeries by third parties.
SPF only allows to identify plausible (PASS) or forged (FAIL)
envelope sender addresses for domains publishing an SPF policy.

 Frank

_______________________________________________
Asrg mailing list
Asrg at ietf.org
https://www1.ietf.org/mailman/listinfo/asrg

Follow-Ups:
- Re: [Asrg] Re: Yet another attempt to fix forwarding
  - From: Douglas Otis

References:
- [Asrg] Yet another attempt to fix forwarding
  - From: Alessandro Vesely
- Re: [Asrg] Yet another attempt to fix forwarding
  - From: Douglas Otis

Prev by Date: Re: [Asrg] Yet another attempt to fix forwarding
Next by Date: Re: [Asrg] blacklists
Previous by thread: Re: [Asrg] Yet another attempt to fix forwarding
Next by thread: Re: [Asrg] Re: Yet another attempt to fix forwarding
Index(es):
- Date
- Thread