1 |
robbat2 10/08/23 18:37:55 |
2 |
|
3 |
Modified: spf.xml |
4 |
Log: |
5 |
Fix SPF reasoning formatting. |
6 |
|
7 |
Revision Changes Path |
8 |
1.5 xml/htdocs/proj/en/infrastructure/spf.xml |
9 |
|
10 |
file : http://sources.gentoo.org/viewvc.cgi/gentoo/xml/htdocs/proj/en/infrastructure/spf.xml?rev=1.5&view=markup |
11 |
plain: http://sources.gentoo.org/viewvc.cgi/gentoo/xml/htdocs/proj/en/infrastructure/spf.xml?rev=1.5&content-type=text/plain |
12 |
diff : http://sources.gentoo.org/viewvc.cgi/gentoo/xml/htdocs/proj/en/infrastructure/spf.xml?r1=1.4&r2=1.5 |
13 |
|
14 |
Index: spf.xml |
15 |
=================================================================== |
16 |
RCS file: /var/cvsroot/gentoo/xml/htdocs/proj/en/infrastructure/spf.xml,v |
17 |
retrieving revision 1.4 |
18 |
retrieving revision 1.5 |
19 |
diff -p -w -b -B -u -u -r1.4 -r1.5 |
20 |
--- spf.xml 6 Oct 2008 05:41:30 -0000 1.4 |
21 |
+++ spf.xml 23 Aug 2010 18:37:55 -0000 1.5 |
22 |
@@ -6,13 +6,14 @@ |
23 |
<guide link = "/proj/en/infrastructure/spf.xml"> |
24 |
<title>SPF for Gentoo.org</title> |
25 |
<author title="Author"> |
26 |
- <mail link="klieber@g.o">Kurt Lieber</mail> |
27 |
+ <mail link="klieber" /> |
28 |
+ <mail link="robbat2" /> |
29 |
</author> |
30 |
<abstract> |
31 |
This guide documents some of the reasons why (and how) Gentoo utilizes SPF. |
32 |
</abstract> |
33 |
-<version>1.0</version> |
34 |
-<date>09 November, 2006</date> |
35 |
+<version>1.2</version> |
36 |
+<date>2010-08-23</date> |
37 |
|
38 |
<chapter> |
39 |
<title>SPF for Gentoo.org</title> |
40 |
@@ -24,12 +25,14 @@ Sender Policy Framework (SPF) is a way t |
41 |
and makes it easier to identify spoofed addresses. It is NOT a spam fighting |
42 |
tool in and of itself. The technology is merely a way to stop one loophole |
43 |
spammers use: source address spoofing. |
44 |
- |
45 |
+</p> |
46 |
+<p> |
47 |
SPF uses DNS to give mail administrators a way to tell other mail |
48 |
administrators what MTAs are allowed to send mail for their particular domain. |
49 |
Essentially, SPF allows us to say, "hey, here's the mail servers that send |
50 |
mail for gentoo.org" |
51 |
- |
52 |
+</p> |
53 |
+<p> |
54 |
Other mail administrators can then use that information to make their own |
55 |
decisions about what to do with mail that does or does not come from one of |
56 |
those servers. |
57 |
@@ -40,19 +43,25 @@ those servers. |
58 |
<title>Gentoo.org</title> |
59 |
<body> |
60 |
<p> |
61 |
-For gentoo, our SPF record is currently: |
62 |
- |
63 |
+For Gentoo, our SPF record is currently: |
64 |
+</p> |
65 |
+<pre caption="gentoo.org SPF record"> |
66 |
"v=spf1 mx ptr ?all" |
67 |
+</pre> |
68 |
|
69 |
+<p> |
70 |
Which breaks down as: |
71 |
- |
72 |
-<b>spf1</b>: use the first version of SPF |
73 |
-<b>mx</b>: anything that is listed as an MX record for gentoo.org is OK ptr: any host that ends in gentoo.org is OK. (requires a PTR record to be in place |
74 |
-<b>?all</b>: if you receive an email from an MTA not on this list, please treat it neutrally. (i.e. do not make decisions based solely on this fact) |
75 |
- |
76 |
+</p> |
77 |
+<dl> |
78 |
+<dt>spf1</dt> <dd>use the first version of SPF</dd> |
79 |
+<dt>mx</dt> <dd>anything that is listed as an MX record for gentoo.org is OK ptr: any host that ends in gentoo.org is OK. (requires a PTR record to be in place)</dd> |
80 |
+<dt>?all</dt> <dd>if you receive an email from an MTA not on this list, please treat it neutrally. (i.e. do not make decisions based solely on this fact)</dd> |
81 |
+</dl> |
82 |
+<p> |
83 |
The ?all is intended to be a transitional phase, with the ultimate goal being |
84 |
to move to ~all or even -all, which are more definitive. |
85 |
- |
86 |
+</p> |
87 |
+<p> |
88 |
Some people have objected to the fact that SpamAssassin adds ~1 to the overall |
89 |
spam score for ?all records. SPF is a tool and, like any other tool, people |
90 |
can do smart things with it and they can do stupid things with it. I'm not |
91 |
@@ -61,10 +70,12 @@ certain way that conflicts with what the |
92 |
tell from the SA test name (SPF_NEUTRAL), SPF calls for records using ?all to |
93 |
treat MTAs sending mail on behalf of that domain neutrally. SPF should not be |
94 |
faulted if SA chooses to go another route. |
95 |
- |
96 |
+</p> |
97 |
+<p> |
98 |
SA provides users with ways of overriding or ignoring this score on a per-user |
99 |
basis if they wish. |
100 |
- |
101 |
+</p> |
102 |
+<p> |
103 |
Finally, it is possible to send a mail From: a gentoo.org email address using |
104 |
a non gentoo.org SMTP server and not run afoul of SA's SPF_NEUTRAL scoring. |
105 |
You can see an example here: |