[itu-sg16] Spam control mechanisms

Eliot Lear lear at cisco.com
Sat May 26 09:52:35 EDT 2007 

Dear Paul,

The IETF has (finally) published DKIM as RFC 4871. DKIM does not suffer 
the sorts of problems you mention, with regard to SPF. Furthermore, it 
is not classed as experimental but as a Proposed Standard. It was 
co-written by, amongst others, the creator of sendmail and syslog, Eric 
Allman, and is based on Yahoo! Domain Keys and Cisco's Identified 
Internet Mail (IIM).

DKIM works through domain-based signatures that are published in the DNS 
as TXT records, and so is path-independent. It also protects message 
content, thus preventing hijacking of one's email address for nefarious 
purposes. I recommend that you consider DKIM in addition to, or as an 
alternative to, SPF.

Eliot Lear
Cisco Systems


Paul E. Jones wrote:
>
> Folks,
>
> Gary mentioned in his last message that he had trouble sending e-mail 
> due to anti-spam settings. Indeed, I have a few things in place to 
> reduce spam on this mailing list which I hope you can generally 
> appreciate.
>
> One of the mechanisms employed is something called SPF 
> (http://en.wikipedia.org/wiki/Sender_Policy_Framework) as specified in 
> RFC 4408. As noted in the RFC, it is experimental and not strongly 
> endorsed by the IETF for one reason (as far as I can tell): you cannot 
> forward mail from one account to another if SPF is used on the 
> receiving server, as it will assume the message is in violation of the 
> SPF rules. Even so, I’ve observed that industry adoption for SPF is 
> significant.
>
> I thought I would bring this to your attention. If you get SPF 
> rejection messages when sending e-mail to this server, then it means 
> that you are transmitting e-mail from an IP address that is not 
> authorized by your domain owner. Hopefully, this is not an issue for 
> folks, but it might be if you send mail through a server which you do 
> not normally send mail through.
>
> I can disable SPF checking if it presents unavoidable problems for 
> anybody. I would prefer to not do that, because the extensive testing 
> I have done shows that it reduces my own personal spam by 28%. That’s 
> substantial considering the quantity of the fine quality product and 
> service offerings I get each day ;-)
>
> Paul
>

More information about the sg16-avd mailing list