i wont date you
These days it's freaking crazy that SPF wasn't in the SMTP RFC, but I know the history of just trying to get it off the ground at all.
Hard-fail SPF is obvious until you see the reality of a global business with tons of independent units sharing a mail domain 
-
@SwiftOnSecurity yup. It also leads to treating domains as whole trust units. "I know it was sent from gmail", so is def. CEO John, right? -
-
.
@SwiftOnSecurity worse still is how they also need to send from god-knows how many different servers: their own, their mailing list, CRM... -
.
@SwiftOnSecurity one I came across was a company using a third party email campaign service to do purely internal staff news letters -
.
@SwiftOnSecurity that wasn't just breaking SPF, it also required they upload the entire global address book... -
.
@SwiftOnSecurity ... and then the volume of inbound staff newsletters would cause hours of delay to ALL incoming email... *facepalm*
-
-
@SwiftOnSecurity Hard-fail SPF is great if you want our professors to never see your email, since they forward it from us to gmail. -
@SwiftOnSecurity running mail servers is a nightmare! It makes absolutely no sense all you have to do just to offer the basics working -
@SwiftOnSecurity good luck configuring all the scanners in every office, globally -
@SwiftOnSecurity And shitty mailing lists that spoof senders. -
@SwiftOnSecurity DKIM is where it’s at… -
@SwiftOnSecurity have to fix this for other IT companies all the time.
Kate Pearce
Michelle D'israeli
Chris Siebenmann
Hugo Gameiro
Nathan McCauley
Alex Lomas
Denis Lemire
Hayden Kirk
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.