{"draft":"draft-ietf-spfbis-4408bis-21","doc_id":"RFC7208","title":"Sender Policy Framework (SPF) for Authorizing Use of Domains in Email, Version 1","authors":["S. Kitterman"],"format":["ASCII","HTML"],"page_count":"64","pub_status":"PROPOSED STANDARD","status":"PROPOSED STANDARD","source":"SPF Update","abstract":"Email on the Internet can be forged in a number of ways.  In\r\nparticular, existing protocols place no restriction on what a sending\r\nhost can use as the \"MAIL FROM\" of a message or the domain given on\r\nthe SMTP HELO\/EHLO commands.  This document describes version 1 of\r\nthe Sender Policy Framework (SPF) protocol, whereby ADministrative\r\nManagement Domains (ADMDs) can explicitly authorize the hosts that\r\nare allowed to use their domain names, and a receiving host can check\r\nsuch authorization.\r\n\r\nThis document obsoletes RFC 4408.","pub_date":"April 2014","keywords":["spoofing","spf","anti-forgery","authentication"],"obsoletes":["RFC4408"],"obsoleted_by":[],"updates":[],"updated_by":["RFC7372","RFC8553","RFC8616"],"see_also":[],"doi":"10.17487\/RFC7208","errata_url":"https:\/\/www.rfc-editor.org\/errata\/rfc7208"}