Milter-greylist

> Joel Reicher <joel@...> wrote:
> 
> > > The point about having SPF as an ACL clause is that you can use it with
> > > other clauses. You could decide to trust SPF for mail coming from a set
> > > of IP netblocks, for instance.
> > 
> > How would that be different from the current situation?
> 
> Today, SPF whitelisting is global and apply to any message. If we
> include it in the ACL framework, you can use it in conjunction with
> other criterions, such as IP netblocks.

Sorry, I must be missing something, because I really don't see the point
of that. Why use SPF if you're going to enter the IP netblock by hand
anyway?

To my mind the strength of SPF is that it *can* be applied globally, for
some purposes. One of those purposes is mail farms, since the SPF record
might define the required IP block. If this block is then *greylisted* in an
appropriate way (equivalence class), you don't have to whitelist it by hand,
and we can get out of this situation of trying to find every mail farm out
there.

Cheers,

	- Joel