Entry 12092 (Berkeley CSUA MOTD)

Berkeley CSUA MOTD:Entry 12092

WIKI \| FAQ \| Tech FAQ
`http://csua.com/feed/`

2025/07/08 [General] UID:1000 Activity:popular

7/8

2004/2/3-5 [Computer/SW/Mail] UID:12092 Activity:nil

2/3     Has anyone seen http://spf.pobox.com?  Sounds interesting.  AOL is testing
        this out.  This'll go a long way to preventing forged domain spams.
        --scotsman
        \_ Doesn't SPF break forwarding?  Aside from that it's an interesting
           idea.  -John
           \_ Yep. Forwarding doesn't work.
        \_ isn't this like from 3 weeks ago on slashdot?
           \_ Hrm.  never noticed.  we've been playing with this since
              the early draft rfc. --scotsman
              \_ linkP?
                 \_ #t
                    \_ why are you so lame? linkP is the same as asking,
                    "Do you have a link?" To answer "Yes" or "#t" is a dickhead
                    smarmy thing to write. of course, the op wrote linkP? which
                    is redundant. you're still a jerk.
                 \_ It's all on the http://spf.pobox.com site.  --scotsman

ERROR, url_link recursive (eces.Colorado.EDU/secure/mindterm2) 2025/07/08 [General] UID:1000 Activity:popular

7/8

You may also be interested in these entries...

2012/10/15-12/4 [Computer/SW/Mail] UID:54501 Activity:nil

10/15   What's the soda email client these days?
        \_ Don't know.  /usr/bin/mail hasn't been working for a while.
        \_ forward to Gmail.
        \_ mutt works for me
	...

2012/8/29-11/7 [Computer/SW/Security] UID:54467 Activity:nil

8/29    There was once a CSUA web page which runs an SSH client for logging
        on to soda.  Does that page still exist?  Can someone remind me of the
        URL please?  Thx.
        \_ what do you mean? instruction on how to ssh into soda?
           \_ No I think he means the ssh applet, which, iirc, was an applet
              that implemented an ssh v1 client.  I think this page went away
	...

2011/11/14-30 [Computer/SW/Security] UID:54228 Activity:nil

11/14   Social Engineering call centers:
        http://www.itbusiness.ca/it/client/en/home/News.asp?id=64887
	...

2011/2/14-4/20 [Computer/SW/Unix] UID:54039 Activity:nil

2/14    You sure soda isn't running windows in disguise?  It would explain the
        uptimes.
        \_ hardly, My winbox stays up longer.
        \_ Nobody cares about uptime anymore brother, that's what web2.0 has
           taught us.  Everything is "stateless".
           \_ You;d think gamers would care more about uptime.
	...

2011/4/6-20 [Computer/SW/Mail, Computer/SW/Unix, Industry/Startup] UID:54078 Activity:nil

4/6     My company is evaluating version control systems. Our two candidates
        are Perforce and Subversion. Anyone worked with both and have good
        arguments one way or the other? (These are the only two options we
        have.) We're most interested in client performance, ease of use, and
        reasonable branching.
        \_ I'll be 'that guy'. If perforce and subversion are optins, why isn't
	...

2011/2/6-19 [Computer/Networking] UID:54028 Activity:nil

2/5     hmm.
$netstat -at | grep LISTEN
tcp        0      0 *:43300                 *:*                     LISTEN
        \_ this is an sshd
tcp        0      0 *:49416                 *:*                     LISTEN
tcp        0      0 *:36201                 *:*                     LISTEN
	...

2010/8/8-9/7 [Computer/SW/Languages/C_Cplusplus, Computer/SW/Languages/Web] UID:53914 Activity:nil

8/8     Trying to make a list of interesting features languages have
        touted as this whole PL field comes around, trying to see if they
        have basis in the culture of the time: feel free to add some/dispute
        1970 C, "portability"
        1980 C++, classes, oop, iterators, streams, functors, templates
             expert systems
	...

2009/9/10-15 [Computer/SW/Mail] UID:53353 Activity:nil

9/9     What should outbound mail server be when reading mail from soda
        with IMAP? Is there a FAQ?
        \_ It's <DEAD>mail.csua.berkeley.edu<DEAD> (same as for incoming mail).
           \_ "The message could not be sent because connecting to SMTP
               server <DEAD>mail.csua.berkeley.edu<DEAD> failed. The server may
               be unavailable or is refusing SMTP connections."
	...

2009/8/3-11 [Computer/HW/Laptop] UID:53235 Activity:low 70%like:53232

8/1     Where is the mac desktop going to go? It seems all the development
        in sw/hw now is for the iphone, imac.  2 finger Gestures won't work
        on the desktop.  What happened to the xserve line?
        \_ Two finger gestures DO work on the desktop.  Have you used a new
           Apple laptop lately...they support up to 5 finger gestures.
           \_ you're making my point even harder, do the 5 finger gestures
	...

Cache (1941 bytes)

spf.pobox.com -> spf.pobox.com/SMTP has a security hole: any connecting client can assert any sender address. The result: your mailbox fills up with bounces to messages that you didnt send. Close the hole, and we can easily block spammers by sender domain. In this mode, an MTA uses SPF to verify the envelope sender SMTP MAIL FROM address during SMTP time. But some people pointed out that SPF can also be used to verify headers to prevent phishing. When used to verify headers, the agent could be an MTA or an MUA, and slightly different rules apply: you have to consider Sender and Resent-From as well as just the From: header. As a reminder: SPF is designed to protect the envelope sender so you dont get bounces that say You sent us a virus. Caller-ID is designed to protect the headers so eBay and PayPal can limit the damage of phishing spams that say Your credit card has expired, please re-enter it here. If you are annoyed by viruses that cause you to get bounces, you should publish SPF. If you are a big institution or a bank and are concerned about phishing, you should publish Caller-ID records as well, but first you should check with Microsoft because you may need a technology license; February 12th 2004: An eWeek article discusses SPFs interaction with the IETF standards process. While it would be really nice to see the SPF draft approved as an Experimental or Draft Standard within the next few weeks, the conservatism inherent in the IETF process may require that we follow procedure, hold a BOF, charter a Working Group, and meet a few times over the next year or two. Conservatism has served the IETF well in the past, and you certainly dont want to rush something as important as this. But the problems are urgent, and people are beginning to abandon email entirely. February 11th 2004: The spec has been published as an Internet-Draft with the version number 00. Oh, and we changed the name from Sender Permitted From to Sender Policy Framework.