Boston Linux & Unix (BLU) Home | Calendar | Mail Lists | List Archives | Desktop SIG | Hardware Hacking SIG
Wiki | Flickr | PicasaWeb | Video | Maps & Directions | Installfests | Keysignings
Linux Cafe | Meeting Notes | Blog | Linux Links | Bling | About BLU

BLU Discuss list archive


[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: SPF [ Was: Re: Anti-recommendation: Comcast.]



 Bill Ricker wrote: 
>> SPF record. There is a special syntax for saying basically "any server in 
>> domainX's SPF record can also send mail 'from' my domain". 
> 
> Doesn't that mean any OTHER comcast customer can forge for your domain? 

In theory, no, because they wouldn't be in Comcast.net's SPF record. 
However, looking at their actual SPF record, it looks excessively broad: 
v=spf1 ip4:76.96.28.0/23 ip4:76.96.30.0/24 ip4:76.96.60.0/23 
ip4:76.96.62.0/24 ?all 

Now, that might actually not be as bad as looks on first blush, since I 
think those IP ranges are not ones that they give to customers (my current 
address from them is 24.34.56.xxx). 

Even if Comcast's record is overly broad, SPF will still serve it's purpose. 
SPF is meant merely as a hint (even though some providers will tag spam 
based on SPF alone), so it's better to be overly broad than too narrow (and 
thereby getting mail you sent needlessly tagged as spam). 

Matt 

-- 
This message has been scanned for viruses and 
dangerous content by MailScanner, and is 
believed to be clean. 

_______________________________________________ 
Discuss mailing list 
[hidden email] 
http://lists.blu.org/mailman/listinfo/discuss
 


BLU is a member of BostonUserGroups
BLU is a member of BostonUserGroups
We also thank MIT for the use of their facilities.

Valid HTML 4.01! Valid CSS!



Boston Linux & Unix / webmaster@blu.org