On Mon, 12 Jan 2009, Colm Buckley wrote:
> How would it tell? Use of SPF records isn't really widespread enough to
> have good spoof detection. There's nothing tricky about "faking" a from:
> field; there is simply no authentication built into SMTP.
And for the "SMTP sucks and should be replaced cause it doesn't do
authentication!" crowd: you can always build end-end authentication
on top of it (far more realistic than trying to secure a network on a
hop->hop basis).
regards,
--
Paul Jakma paul at clubi.iepaul at jakma.org Key ID: 64A2FF6A
Fortune:
Q: Why does Washington have the most lawyers per capita and
New Jersey the most toxic waste dumps?
A: God gave New Jersey first choice.
Maintained by the ILUG website team. The aim of Linux.ie is to
support and help commercial and private users of Linux in Ireland. You can
display ILUG news in your own webpages, read backend
information to find out how. Networking services kindly provided by HEAnet, server kindly donated by
Dell. Linux is a trademark of Linus Torvalds,
used with permission. No penguins were harmed in the production or maintenance
of this highly praised website. Looking for the
Indian Linux Users' Group? Try here. If you've read all this and aren't a lawyer: you should be!
