If SPF is too complex try CSV/CSA
If SPF is too complex try CSV/CSA
Posted Apr 12, 2008 19:46 UTC (Sat) by kevinbsmith (guest, #4778)In reply to: If SPF is too complex try CSV/CSA by copsewood
Parent article: Backscatter increase clogs inboxes
For those of you who don't naturally think in RFC-speak, here is a gentler introduction to CSA: http://www-uxsup.csx.cam.ac.uk/~fanf2/hermes/doc/antiforg... It's still not quite as "plain English" as I would prefer, but it's not bad. I would be interested to hear other opinions about a) how much good for individuals who adopt it tomorrow, b) the likelihood of it being widely adopted, and c) how much good it could do if widely adopted. I'm still sad about SPF. The worst part was when I set up both email hosting and outgoing smtp services at pobox.com (who themselves were among the SPF originators), and was still unable to find or get a simple recipe for configuring SPF.
Posted Apr 17, 2008 11:07 UTC (Thu)
by copsewood (subscriber, #199)
[Link]
If SPF is too complex try CSV/CSA
Good article thanks. I think that SPF is probably redundant, because if you want to know the
sending MTA is responsibly managed CSV/CSA together with a domain reputation system is
probably better. If you want to know the message is authentic, Domainkeys offers a better
solution. I don't think there is much overlap in function between Domainkeys and CSV/CSA but
SPF tries to overlap both and does neither job well.