[gentoo-commits] gentoo commit in xml/htdocs/proj/en/infrastructure: spf.xml - gentoo-commits

From:	"Robin H. Johnson (robbat2)" <robbat2@g.o>
To:	gentoo-commits@l.g.o
Subject:	[gentoo-commits] gentoo commit in xml/htdocs/proj/en/infrastructure: spf.xml
Date:	Mon, 23 Aug 2010 18:38:01
Message-Id:	`20100823183755.D47B42004E@flycatcher.gentoo.org`

1

robbat2     10/08/23 18:37:55

2

3

  Modified:             spf.xml

4

  Log:

5

  Fix SPF reasoning formatting.

6

7

Revision  Changes    Path

8

1.5                  xml/htdocs/proj/en/infrastructure/spf.xml

9

10

file : http://sources.gentoo.org/viewvc.cgi/gentoo/xml/htdocs/proj/en/infrastructure/spf.xml?rev=1.5&view=markup

11

plain: http://sources.gentoo.org/viewvc.cgi/gentoo/xml/htdocs/proj/en/infrastructure/spf.xml?rev=1.5&content-type=text/plain

12

diff : http://sources.gentoo.org/viewvc.cgi/gentoo/xml/htdocs/proj/en/infrastructure/spf.xml?r1=1.4&r2=1.5

13

14

Index: spf.xml

15

===================================================================

16

RCS file: /var/cvsroot/gentoo/xml/htdocs/proj/en/infrastructure/spf.xml,v

17

retrieving revision 1.4

18

retrieving revision 1.5

19

diff -p -w -b -B -u -u -r1.4 -r1.5

20

--- spf.xml	6 Oct 2008 05:41:30 -0000	1.4

21

+++ spf.xml	23 Aug 2010 18:37:55 -0000	1.5

22

@@ -6,13 +6,14 @@

23

 <guide link = "/proj/en/infrastructure/spf.xml">

24

 <title>SPF for Gentoo.org</title>

25

 <author title="Author">

26

-    <mail link="klieber@g.o">Kurt Lieber</mail>

27

+    <mail link="klieber" />

28

+    <mail link="robbat2" />

29

 </author>

30

 <abstract>

31

 This guide documents some of the reasons why (and how) Gentoo utilizes SPF.  

32

 </abstract>

33

-<version>1.0</version>

34

-<date>09 November, 2006</date>

35

+<version>1.2</version>

36

+<date>2010-08-23</date>

37

38

 <chapter>

39

 <title>SPF for Gentoo.org</title>

40

@@ -24,12 +25,14 @@ Sender Policy Framework (SPF) is a way t

41

 and makes it easier to identify spoofed addresses.  It is NOT a spam fighting

42

 tool in and of itself.  The technology is merely a way to stop one loophole

43

 spammers use: source address spoofing. 

44

-

45

+</p>

46

+<p>

47

 SPF uses DNS to give mail administrators a way to tell other mail

48

 administrators what MTAs are allowed to send mail for their particular domain.

49

 Essentially, SPF allows us to say, "hey, here's the mail servers that send

50

 mail for gentoo.org"

51

-

52

+</p>

53

+<p>

54

 Other mail administrators can then use that information to make their own

55

 decisions about what to do with mail that does or does not come from one of

56

 those servers.  

57

@@ -40,19 +43,25 @@ those servers.  

58

 <title>Gentoo.org</title>

59

 <body>

60

<p>

61

-For gentoo, our SPF record is currently:

62

-

63

+For Gentoo, our SPF record is currently:

64

+</p>

65

+<pre caption="gentoo.org SPF record">

66

 "v=spf1 mx ptr ?all"

67

+</pre>

68

69

+<p>

70

 Which breaks down as:

71

-

72

-<b>spf1</b>: use the first version of SPF

73

-<b>mx</b>: anything that is listed as an MX record for gentoo.org is OK ptr: any host that ends in gentoo.org is OK.  (requires a PTR record to be in place

74

-<b>?all</b>: if you receive an email from an MTA not on this list, please treat it neutrally.  (i.e. do not make decisions based solely on this fact)

75

-

76

+</p>

77

+<dl>

78

+<dt>spf1</dt>	<dd>use the first version of SPF</dd>

79

+<dt>mx</dt> <dd>anything that is listed as an MX record for gentoo.org is OK ptr: any host that ends in gentoo.org is OK.  (requires a PTR record to be in place)</dd>

80

+<dt>?all</dt> <dd>if you receive an email from an MTA not on this list, please treat it neutrally.  (i.e. do not make decisions based solely on this fact)</dd>

81

+</dl>

82

+<p>

83

 The ?all is intended to be a transitional phase, with the ultimate goal being

84

 to move to ~all or even -all, which are more definitive.

85

-

86

+</p>

87

+<p>

88

 Some people have objected to the fact that SpamAssassin adds ~1 to the overall

89

 spam score for ?all records.  SPF is a tool and, like any other tool, people

90

 can do smart things with it and they can do stupid things with it.  I'm not

91

@@ -61,10 +70,12 @@ certain way that conflicts with what the

92

 tell from the SA test name (SPF_NEUTRAL), SPF calls for records using ?all to

93

 treat MTAs sending mail on behalf of that domain neutrally.  SPF should not be

94

 faulted if SA chooses to go another route.

95

-

96

+</p>

97

+<p>

98

 SA provides users with ways of overriding or ignoring this score on a per-user

99

 basis if they wish.

100

-

101

+</p>

102

+<p>

103

 Finally, it is possible to send a mail From: a gentoo.org email address using

104

 a non gentoo.org SMTP server and not run afoul of SA's SPF_NEUTRAL scoring.

105

 You can see an example here:

1	robbat2 10/08/23 18:37:55
2
3	Modified: spf.xml
4	Log:
5	Fix SPF reasoning formatting.
6
7	Revision Changes Path
8	1.5 xml/htdocs/proj/en/infrastructure/spf.xml
9
10	file : http://sources.gentoo.org/viewvc.cgi/gentoo/xml/htdocs/proj/en/infrastructure/spf.xml?rev=1.5&view=markup
11	plain: http://sources.gentoo.org/viewvc.cgi/gentoo/xml/htdocs/proj/en/infrastructure/spf.xml?rev=1.5&content-type=text/plain
12	diff : http://sources.gentoo.org/viewvc.cgi/gentoo/xml/htdocs/proj/en/infrastructure/spf.xml?r1=1.4&r2=1.5
13
14	Index: spf.xml
15	===================================================================
16	RCS file: /var/cvsroot/gentoo/xml/htdocs/proj/en/infrastructure/spf.xml,v
17	retrieving revision 1.4
18	retrieving revision 1.5
19	diff -p -w -b -B -u -u -r1.4 -r1.5
20	--- spf.xml 6 Oct 2008 05:41:30 -0000 1.4
21	+++ spf.xml 23 Aug 2010 18:37:55 -0000 1.5
22	@@ -6,13 +6,14 @@
23	<guide link = "/proj/en/infrastructure/spf.xml">
24	<title>SPF for Gentoo.org</title>
25	<author title="Author">
26	- <mail link="klieber@g.o">Kurt Lieber</mail>
27	+ <mail link="klieber" />
28	+ <mail link="robbat2" />
29	</author>
30	<abstract>
31	This guide documents some of the reasons why (and how) Gentoo utilizes SPF.
32	</abstract>
33	-<version>1.0</version>
34	-<date>09 November, 2006</date>
35	+<version>1.2</version>
36	+<date>2010-08-23</date>
37
38	<chapter>
39	<title>SPF for Gentoo.org</title>
40	@@ -24,12 +25,14 @@ Sender Policy Framework (SPF) is a way t
41	and makes it easier to identify spoofed addresses. It is NOT a spam fighting
42	tool in and of itself. The technology is merely a way to stop one loophole
43	spammers use: source address spoofing.
44	-
45	+</p>
46	+<p>
47	SPF uses DNS to give mail administrators a way to tell other mail
48	administrators what MTAs are allowed to send mail for their particular domain.
49	Essentially, SPF allows us to say, "hey, here's the mail servers that send
50	mail for gentoo.org"
51	-
52	+</p>
53	+<p>
54	Other mail administrators can then use that information to make their own
55	decisions about what to do with mail that does or does not come from one of
56	those servers.
57	@@ -40,19 +43,25 @@ those servers.
58	<title>Gentoo.org</title>
59	<body>
60	<p>
61	-For gentoo, our SPF record is currently:
62	-
63	+For Gentoo, our SPF record is currently:
64	+</p>
65	+<pre caption="gentoo.org SPF record">
66	"v=spf1 mx ptr ?all"
67	+</pre>
68
69	+<p>
70	Which breaks down as:
71	-
72	-<b>spf1</b>: use the first version of SPF
73	-<b>mx</b>: anything that is listed as an MX record for gentoo.org is OK ptr: any host that ends in gentoo.org is OK. (requires a PTR record to be in place
74	-<b>?all</b>: if you receive an email from an MTA not on this list, please treat it neutrally. (i.e. do not make decisions based solely on this fact)
75	-
76	+</p>
77	+<dl>
78	+<dt>spf1</dt> <dd>use the first version of SPF</dd>
79	+<dt>mx</dt> <dd>anything that is listed as an MX record for gentoo.org is OK ptr: any host that ends in gentoo.org is OK. (requires a PTR record to be in place)</dd>
80	+<dt>?all</dt> <dd>if you receive an email from an MTA not on this list, please treat it neutrally. (i.e. do not make decisions based solely on this fact)</dd>
81	+</dl>
82	+<p>
83	The ?all is intended to be a transitional phase, with the ultimate goal being
84	to move to ~all or even -all, which are more definitive.
85	-
86	+</p>
87	+<p>
88	Some people have objected to the fact that SpamAssassin adds ~1 to the overall
89	spam score for ?all records. SPF is a tool and, like any other tool, people
90	can do smart things with it and they can do stupid things with it. I'm not
91	@@ -61,10 +70,12 @@ certain way that conflicts with what the
92	tell from the SA test name (SPF_NEUTRAL), SPF calls for records using ?all to
93	treat MTAs sending mail on behalf of that domain neutrally. SPF should not be
94	faulted if SA chooses to go another route.
95	-
96	+</p>
97	+<p>
98	SA provides users with ways of overriding or ignoring this score on a per-user
99	basis if they wish.
100	-
101	+</p>
102	+<p>
103	Finally, it is possible to send a mail From: a gentoo.org email address using
104	a non gentoo.org SMTP server and not run afoul of SA's SPF_NEUTRAL scoring.
105	You can see an example here:

Gentoo Archives: gentoo-commits