On Wed, 2004-05-26 at 11:24 +0200, Tom Kistner wrote:
> David Woodhouse wrote:
>
> > Please don't give the above as an example of how to use SPF. That would
> > be a _very_ silly thing for people to cut and paste into their config
> > file. Perhaps this would do as an example instead...
> >
> > deny !spf=pass
> > !verify=sender/callout,random,postmaster
>
> OK, but why is following a "fail" verdict silly? If a domain is so
> strict that it wants non-authorized relays to fail, why can't we honor
> that request?
Because they have no right to make that request. If my users have a
forward file they _authorised_ the forwarding of their email. Just
because some nutter on the sender side thinks that forwarding is bad,
that doesn't mean we should encourage _recipients_ to obey.
--
dwmw2