headers
Julian Mehnle | 2 Oct 2005 03:55
Gravatar

Building the new SPF website


(CCed to spf-discuss for announcement, but please send follow up messages
to the spf-webmasters list.)

Community,

building the new website, which is reachable at <http://new.openspf.org>
for now, will be an ongoing process until we can completely switch over
from the old site to the new one in a few months.

I think we should pursue a top-down appraoch for structuring the website,
so I have taken my initial proposal[1] for a list of desirable website
contents and turned it into a preliminary sitemap of the new website:

  http://new.openspf.org/Sitemap

We should proceed from there and create the missing pages, possibly re-
using content from the old website[2] where adequate and creating new
content otherwise.

Suggestions and constructive criticism are welcome!

Since only privileged editors (i.e. the webmasters Michael and me, and all
the council members) have write access to all parts of the website, I
explicitly invite the community to use the publicly editable community
section, i.e. <http://new.openspf.org/Community> and sub-pages thereof, to
contribute content.  After having undergone QA, such content can then be
moved to the official parts of the website.

All content will be dual-licensed under the GPL 2[3] and the CC BY-SA 2.5
(Continue reading)

Permalink | Reply | 3 comments |
headers
spf-discuss | 2 Oct 2005 05:00
Favicon

SPF Mail Summary Report

                    iMail News Gateway Server v3.1                    
          (c) Copyright 1996-2005 Santronics Software, Inc.           

                        Mail Forum Statistics                         
                Date Range : 24 Sep 2005 - 01 Oct 2005
                Report Date: 01 Oct 2005

----------------------------------------------------------------------
Total Summary:
----------------------------------------------------------------------

Total Forums          : 2
Total Messages        : 22
Total Participants    : 13
Total Vendor Postings : 0
Total Mail/No Replies : 9  (40%)
          6+ Days Old : 4    4+ Days Old: 2
          2+ Days Old : 2    1 Day Old  : 1
Busiest Posting Hour  : 9am  (5 msgs)
Busiest Posting Day   : Sunday  (9 msgs)

+-[ Hourly Posting Pattern ]----------------------+
|                   *                             |
|                   *                             |
|                   *                             |
|                   *                             |
|                   *   * *                       |
|                   *   * *                       |
|                   * * * *       *               |
|                   * * * *       *               |
(Continue reading)

Permalink | Reply | 0 comments |
headers
Frank Ellermann | 2 Oct 2005 11:04
Picon
Picon

Re: Building the new SPF website

Julian Mehnle wrote:

> (CCed to spf-discuss for announcement, but please send
>  follow up messages to the spf-webmasters list.)

X-Post, because your article was the first also visible
on <http://dir.gmane.org/gmane.mail.spam.spf.webmasters>

So now there's the usual GMaNe Blog - News - RSS - NNTP -
search magic available for this list (I hope)

> http://new.openspf.org/Sitemap

Another new page explains WiKi markup, e.g. lines starting
with a space cause monospaced font like HTML <pre> or <tt>
- it sounds fairly easy, almost all demos work also with
my old browser.

> http://creativecommons.org/licenses/by-sa/2.5/

                         Good, bye, Frank
Permalink | Reply | 1 comment |
headers
administrator | 2 Oct 2005 17:28

Dam Bounces

I am getting really tired of these dam bounces from brain-dead servers. I
get over a thousand of these attempts for every real message. They appear
to be from legitimate background spam/virus filters. I have made several
observations, and I am wondering if anyone would like to speculate on the
mode of operation and what to do about it.

The bounce attempts are from many different servers and to many different
addresses. Some of the names (like the ones below) are used many times, but
some only a few times. I block all the ones below with a 501 error to try
and get the message across, but it is a losing battle. Every once in a
while a new name gets abused repeatedly and gets added to the list. For
example, the last three names were added to the block list this morning.
-------------------------------------------------------------------
Juwan, Tony, Terrence, Dakotah, Shea, Ramiro, Robert, Everett, Derick,
martinson, strangled, paraphrasing, stipulates, europeanize, rigid,
differentiates, predicated, rapid, cartwheel, Keon, Arron, Gordon, Clint,
Jordan, Nickolas, Adan, Josue, assorts, rang, sapsucker, warships,
illumination, postulations, regulation, insinuate, Bucharest, Abdullah,
nymphomaniac, hard, prorated, hoariness, & exponentiated.
-------------------------------------------------------------------
If only these brain-dead servers would check the SPF record, they would do
away with all this useless traffic.

J.A. Coutts
Permalink | Reply | 2 comments |
headers
Scott Kitterman | 2 Oct 2005 17:39

Re: Dam Bounces

Just as a reminder, Spamcop will now take these submissions.  Getting onto the 
Spamcop RBL might get their attention...

Scott K
Permalink | Reply | 0 comments |
headers
Kaas Baichtal | 2 Oct 2005 19:58

Re: Dam Bounces

I was experiencing the same feelings last year and it was ruining my day 
every time I looked at logs. As a solution I finally ended up editing my 
reject message to read something on the order of "No such user. Please 
implement SPF (http://spf.pobox.com) to avoid bouncing mail to spoofed 
senders". This didn't stop the spoofing (though it did cut down on it quite 
a bit) but what it really did was take away the frustration. Now when I see 
my logs it's kind of nice to think of spammers as advertising SPF for us... 
and I can get on with my other business without having that on my mind all 
the time.

--Kaas

----- Original Message ----- 
From: <administrator <at> yellowhead.com>
To: <spf-discuss <at> v2.listbox.com>
Sent: Sunday, October 02, 2005 9:28 AM
Subject: [spf-discuss] Dam Bounces

>I am getting really tired of these dam bounces from brain-dead servers. I
> get over a thousand of these attempts for every real message. They appear
> to be from legitimate background spam/virus filters. I have made several
> observations, and I am wondering if anyone would like to speculate on the
> mode of operation and what to do about it.
>
> The bounce attempts are from many different servers and to many different
> addresses. Some of the names (like the ones below) are used many times, 
> but
> some only a few times. I block all the ones below with a 501 error to try
> and get the message across, but it is a losing battle. Every once in a
> while a new name gets abused repeatedly and gets added to the list. For
(Continue reading)

Permalink | Reply | 0 comments |
headers
Stuart D. Gathman | 3 Oct 2005 19:32

Positive feedback on DSN for SPF None

Pymilter sends a DSN for mail which has no ID, that is: no/dyn PTR, 
no/dyn/invalid HELO, no SPF.  While mostly these are ignored, I do
get some responses - all positive.  Here is a recent response:

----
to: Postmaster <at> mail.xxxxxxxx.com

thanks for taking time to offer the below advice to me. 
our ip address is not 202.133.67.221
someone is "Joe-Jobbing" our domain name / email address. 

I'll discuss your suggestions with Postini who handles spam filtering
service. 

again i appreciate your explanation.

brgds/bluewater/matt boucree
----

While the "current RFC only" purists are rolling their eyes, I do encourage
MTAs to treat lack of any id as a warning worthy of a DSN - or even
blocking such mail altogether (as I do on my own domain).

My only concern is that someone might have a type of ID that my
software doesn't know about yet.  That is why I was looking at CSV earlier
(I gave up because the proponents don't respond to email requesting
help setting it up).

DK and SID don't count, because I am looking for a valid *envelope* id.
(Continue reading)

Permalink | Reply | 0 comments |
headers
wayne | 6 Oct 2005 22:56

update on the SPF RFC


fyi;

There are signs that the SPF I-D is actually moving through the RFC queue,
although nothing appears to have actually happened to it yet.

First of, the updated ABNF RFC which the SPF I-D depends on has now
been published (RFC4234, which replaces RFC2234).  This has been noted
on the RFC queue web page.

Secondly, there used to be a couple of I-Ds between the SPF and
SenderID I-Ds, and these are now gone.  I wish I had recorded their
names to see if they have already been published, or if they were
withdrawn, or if things had moved around.  archive.org wasn't any help
since it only shows web pages older than something like 6 months.

Finally, there are a few I-Ds just a little bit up the queue that have
had their status changed from "edit" (e.g. the RFC Editor needs to
edit them).

So, maybe in a few months something will actually happen with the SPF
I-D.

-wayne
Permalink | Reply | 1 comment |
headers
Frank Ellermann | 7 Oct 2005 01:18
Picon
Picon

Re: update on the SPF RFC

wayne wrote:

> There are signs that the SPF I-D is actually moving through
> the RFC queue, although nothing appears to have actually
> happened to it yet.

Yes, and they just changed their system:
<http://permalink.gmane.org/gmane.ietf.rfc.interest/37>

That resulted in a new fragment for SPF (was #schlitt-...):
<http://www.rfc-editor.org/queue.html#draft-schlitt-spf-classic>

Just for fun I've also updated the pseudo-"chapter 6.3":
<http://purl.net/xyzzy/home/test/draft-spf-6-3-options-09.txt>

So far the new experimental xml2rfc version appears to work:
<http://xml.resource.org/experimental.html>

Other news that made it into my "internet draft collection":

10-06 http://ietf.org/internet-drafts/draft-hollenbeck-sls-rationale-00
10-04 http://ietf.org/internet-drafts/draft-klensin-ima-framework-00
09-30 http://ietf.org/internet-drafts/draft-mankin-pub-req-00
09-30 http://ietf.org/internet-drafts/draft-delany-domainkeys-base-03
09-30 http://ietf.org/internet-drafts/draft-yao-ima-smtpext-00
09-28 http://ietf.org/internet-drafts/draft-fenton-dkim-threats-00
09-21 http://ietf.org/internet-drafts/draft-andrews-full-service-resolvers-00
09-21 http://ietf.org/internet-drafts/draft-carpenter-procdoc-roadmap-01
09-20 http://ietf.org/internet-drafts/draft-iab-auth-mech-04
09-16 http://ietf.org/internet-drafts/draft-otis-mass-reputation-03
(Continue reading)

Permalink | Reply | 0 comments |
headers
spf-discuss | 9 Oct 2005 05:00
Favicon

SPF Mail Summary Report

                    iMail News Gateway Server v3.1                    
          (c) Copyright 1996-2005 Santronics Software, Inc.           

                        Mail Forum Statistics                         
                Date Range : 01 Oct 2005 - 06 Oct 2005
                Report Date: 08 Oct 2005

----------------------------------------------------------------------
Total Summary:
----------------------------------------------------------------------

Total Forums          : 2
Total Messages        : 23
Total Participants    : 14
Total Vendor Postings : 0
Total Mail/No Replies : 5  (21%)
          6+ Days Old : 1    4+ Days Old: 3
          2+ Days Old : 1    1 Day Old  : 0
Busiest Posting Hour  : 4pm  (6 msgs)
Busiest Posting Day   : Thursday  (8 msgs)

+-[ Hourly Posting Pattern ]----------------------+
|                                 *               |
|                                 *               |
|                                 *               |
|                                 *               |
|                 *               *               |
|                 * *             *               |
|                 * *             *               |
|                 * *   *   *     *               |
(Continue reading)

Permalink | Reply | 0 comments |

Gmane