You are viewing a plain text version of this content. The canonical link for it is here.
Posted to commits@spamassassin.apache.org by Apache Wiki <wi...@apache.org> on 2008/12/27 00:55:58 UTC
[Spamassassin Wiki] Trivial Update of "TrustPath" by KenyonRalph
Dear Wiki user,
You have subscribed to a wiki page or wiki category on "Spamassassin Wiki" for change notification.
The following page has been changed by KenyonRalph:
http://wiki.apache.org/spamassassin/TrustPath
The comment on the change is:
links to RFCs
------------------------------------------------------------------------------
''Why doesn't the auto detection just work for all networks?''
- Unfortunately there's limits to what one can automatically discover about a network from just email headers.
+ Unfortunately there's limits to what one can automatically discover about a network from just email headers.
- It's pretty obvious that any RFC 1918 (which obsoleted RFC 1597) private IP's in the most recent Received: header are part of the local network. From there, tracking backwards in terms of time, each additional private IP can be safely assumed to be a part of the local network until you hit the first non-private IP.
+ It's pretty obvious that any [http://tools.ietf.org/html/rfc1918|RFC 1918] (which obsoleted [http://tools.ietf.org/html/rfc1597|RFC 1597]) private IP's in the most recent Received: header are part of the local network. From there, tracking backwards in terms of time, each additional private IP can be safely assumed to be a part of the local network until you hit the first non-private IP.
- The problem is how can you tell if that first non-private IP is part of the local network? You can't.
+ The problem is how can you tell if that first non-private IP is part of the local network? You can't.
You could be dealing with a network in which the gateway MX is part of a DMZ which is not address translated, in which case that non-private IP is local. On the other hand, you could be dealing with a network where the gateway MX is address translated, in which case that non-private IP is outside the local network.