, SecurityFocus 2006-04-20
A host of software companies, security firms and Internet service providers met in Chicago on Wednesday to urge corporations and bulk message senders to adopt e-mail authentication technologies.
Expand all |
Post comment
E-mail authentication gaining steam
2006-04-20
Todd Knarr (2 replies)
Todd Knarr (2 replies)
I guess you mean your forced to send via your isp's outbound mailservers, in which case you need to add those mailservers to your spf record.
This does mean that other people using your isp's outbound mailservers can send email claiming to be from your domain name, but thats a lot less people that the entire net!
The best solution here is for whoever hosts the domain name to provide an email submission service (smtp on port 587), this would only allow email to be sent through it if you authenticate with the submission server using SMTP AUTH, that way the host can be sure that your allowed to use the service and then match you to your domain to make sure that you are only sending email from your domain.
[ reply ]
Link to this comment: http://www.securityfocus.com/comments/articles/11388/33780#33780