Ä¿ÇǴнº, ½Ã½ºÅÛ ¿£Áö´Ï¾îÀÇ ½°ÅÍ Ä¿ÇÇÇâÀÌ ³ª´Â *NIX
Ä¿ÇǴнº
½Ã½ºÅÛ/³×Æ®¿÷/º¸¾ÈÀ» ´Ù·ç´Â °÷
* HanIRCÀÇ #coffeenix ¹æ
[ Àåºñ ¹× ȸ¼± ÈÄ¿ø ]
HOME > ³×Æ®¿öÅ©(network) > ¸ÞÀÏ ¼­¹ö(mail) > ¸ÞÀÏ ÇÊÅ͸µ(½ºÆÔ¸ÞÀÏ) / procmail µµ¿ò¸»
°Ë»ö : »çÀÌÆ® WHOIS À¥¼­¹ö Á¾·ù


  ¸ÞÀÏÁÖ¼Ò º¯Á¶´Â no, SPF(Sender Policy Framework)±â¼ú¿¡ ´ëÇØ ÀÛ¼ºÀÏ : 2005/08/03 15:44
 
  • ±Û¾´ÀÌ : ÁÁÀºÁøÈ£ ( http://coffeenix.net/ )
  • Á¶È¸¼ö : 17354
          [ ÀÌÀüÈ­¸é / ¼öÁ¤ ]   ºñ¹Ð¹øÈ£ :     Àμâ¿ë È­¸é
      Á¦  ¸ñ : ¸ÞÀÏÁÖ¼Ò º¯Á¶´Â no, SPF(Sender Policy Framework)±â¼ú¿¡ ´ëÇØ
    ÀÛ¼ºÀÚ : ÁÁÀºÁøÈ£(truefeel, http://coffeenix.net/ )
    ÀÛ¼ºÀÏ : 2005.8.3(¼ö) ¿ÀÈÄ


    »óÄèÇÑ ¾Æħ¿¡ ½ºÆÔ¸ÞÀÏ·Î °¡µæÂù ¸ÞÀÏÇÔÀ» ¿­ ¶§ ¸¶´Ù Ŭ¸¯°ú »èÁ¦ÀÇ ¹Ýº¹À¸·Î Â¥Áõ³­ ÇϷ縦 ½ÃÀÛÇÑ ÀûÀº ¾ø´ÂÁö?

    - Antivirus
    - RBL, SURBL
    - procmail, byspamÅëÇÑ ½ºÆÔÇÊÅ͸µ
    - joe job attack¿¡ ´ëÇÑ ¹æ¾î ¼³Á¤
    - spamassassinÈ°¿ëÇÑ Á¡¼öÁ¦ ¸ÞÀÏ ÇÊÅ͸µ

    µî ´Ù¾çÇÑ ¹æ¹ýµé·Î ¸ÞÀÏ ÇÊÅ͸µÀ» Çϴµ¥ ¿À´ÃÀº SPF¿¡ ´ëÇØ ¾Ë¾Æº¸°Ú´Ù.

    1. SPF(Sender Policy Framework)¶õ

    10°³ÀÇ Æ÷ÅлçÀÌÆ®°¡ SPF±â¼úÀ» ÅëÇؼ­ ½ºÆÔ¸ÞÀÏÀ» ÇÊÅ͸µÇÒ °èȹÀ̶ó´Â ¿À´ÃÀÚ ±â»ç¸¦ ºÃ´Ù.
    Meng Weng Wong¿¡ ÀÇÇØ 2003³â¿¡ ½ÃÀÛµÈ SPF±â¼úÀº ¸ÞÀÏÀÇ Çì´õ¸¦ º¸°í ½ÇÁ¦ ÇØ´ç ¸ÞÀϼ­¹ö¿¡¼­ º¸³»Áø
    °ÍÀÎÁö¸¦ ÆÇ´ÜÇÏ¿© ¸ÞÀÏ ¼ö½ÅÀ» ¸·´Â ¹æ¹ýÀÌ´Ù.

    ¿¹¸¦ µé¾î
    ¸ÞÀÏÀÇ From Çì´õ¿¡ foo@spammer.com ¶ó°í ÀûÇôÀÖÀ¸¸é
    spammer.com À» °ü¸®ÇÏ´Â DNS¸¦ ÅëÇؼ­
    ÇØ´ç ¸ÞÀÏÀÌ ½ÇÁ¦ spammer.com¿¡¼­ ¼³Á¤ÇÑ IP¿Í ¼ö½ÅµÈ ¸ÞÀÏÇì´õÀÇ IP¿Í ºñ±³Çؼ­ ´Ù¸£¸é ¼ö½ÅÀ» °ÅºÎÇÏ°Ô
    µÈ´Ù. Áï, ½ÇÁ¦·Î hanmail.net¿¡¼­ º¸³»Áö ¾ÊÁö ¾Ê¾ÒÀ¸¸é¼­ ¸ÞÀÏÁÖ¼Ò´Â @hanmail.net ·Î ¼Ó¿©¼­ ¹ß¼ÛµÇ´Â
    ¸ÞÀÏÀº ÇÊÅ͸µÀÌ °¡´ÉÇÏ°Ô µÇ´Â °ÍÀÌ´Ù.

    »çÁøÃâó : http://pm-lib.sourceforge.net/


    2. SPF ±â¼ú Àû¿ëÀ§ÇÑ DNS ¼³Á¤

    SPF ±â¼úÀ» Àû¿ëÇϱâ À§Çؼ­´Â ¸ÞÀϼ­¹ö¸¦ ¿î¿µÁßÀÎ »çÀÌÆ®ÀÇ DNS¿¡´Â TXT ·¹ÄÚµå ¼³Á¤ÀÌ ÇÊ¿äÇÏ´Ù.
    ÀÌ ¼³Á¤Àº ´Ù¸¥ ¸ÞÀϼö½Å¼­¹öµé¿¡°Ô SPFÁ¤Ã¥À» ÅëÇØ ¸ÞÀÏÀ» ÇÊÅ͸µÇϵµ·Ï µµ¿òÀ» ÁÖ±âÀ§ÇÑ ¼³Á¤ÀÌÁö
    º»ÀÎÀÇ ¸ÞÀϼ­¹ö·Î ¼ö½ÅµÈ ¸ÞÀÏÀÌ ÇÊÅ͸µµÇµµ·Ï ¼³Á¤ÇÏ´Â °ÍÀÌ ¾Æ´Ï´Ï, DNS ¼³Á¤Çß´Ù°í '¾î~ ÇÊÅ͸µÀÌ
    ¾ÈµÇÁö'ÇÏ°í Çê»ðÁýÇÏÁö ¸»±â ¹Ù¶õ´Ù.

    SPF ±â¼úÀ» Àû¿ëÇÏ°Ú´Ù°í º¸µµµÈ 10°³ÀÇ Æ÷ÅÐ »çÀÌÆ®¿¡ ´ëÇØ DNS ¼³Á¤À» È®ÀÎÇÑ °á°ú 5°÷ÀÇ DNS¿¡´Â
    ÀÌ¹Ì TXT ¼³Á¤ÀÌ µÇ¾î ÀÖ¾ú´Ù.

    ¡Ø 10°³ Æ÷ÅÐ »çÀÌÆ®
       nownuri.net, hanmail.net, chol.com, dreamwiz.com, empas.com(empal.com),
       korea.com, hotmail.com, paran.com, naver.com, nate.com

     
    # dig txt µµ¸ÞÀÎ
     


     
    ;; ANSWER SECTION:
    korea.com.              1759    IN      TXT     "v=spf1 mx ip4:210.117.14.85 ip4:211.109.1.111
    ip4:211.109.1.113 ip4:211.109.1.114 ip4:211.109.1.115 ip4:211.109.1.151 ip4:211.109.1.152
    ip4:211.109.11.35 ip4:211.109.11.40 ip4:211.109.2.50 ip4:211.109.2.51 ~all"

    ;; ANSWER SECTION:
    nownuri.net.            10800   IN      TXT     "v=spf1 a:203.238.128.57 a:203.238.128.90 ~all"

    ;; ANSWER SECTION:
    chol.com.               3600    IN      TXT     "v=spf1 ip4:203.252.3.0/24 ~all"

    ;; ANSWER SECTION:
    dreamwiz.com.           900     IN      TXT     "v=spf1 ip4:211.39.128.0/24 a mx ptr ~all"

    ;; ANSWER SECTION:
    hotmail.com.            3600    IN      TXT     "v=spf1 include:spf-a.hotmail.com include:spf-b.hotmail.com

    include:spf-c.hotmail.com include:spf-d.hotmail.com ~all"

    ;; ANSWER SECTION:
    spf-a.hotmail.com.      2590    IN      TXT     "v=spf1 ip4:209.240.192.0/19 ip4:65.52.0.0/14
    ip4:131.107.0.0/16 ip4:157.54.0.0/15 ip4:157.56.0.0/14 ip4:157.60.0.0/16 ip4:167.220.0.0/16
    ip4:204.79.135.0/24 ip4:204.79.188.0/24 ip4:204.79.252.0/24 ip4:207.46.0.0/16 ip4:199.2.137.0/24 ~all"
     


    Àú ¼³Á¤À» º¸°í ¾î¶»°Ô TXT¸¦ ¼³Á¤ÇؾßÇÏ´ÂÁö ´«Ä¡¸¦ ëÀ» °ÍÀÌ´Ù.

    ----------  ---------------------------------------------------------------------------
    methods     ¼³  ¸í
    ----------  ---------------------------------------------------------------------------
    v=spf1      SPFÀÇ ¹öÀü
    ip4         ¸ÞÀÏÀ» ¼Û½ÅÇÏ´Â IPÁÖ¼Òµé. 211.39.128.0/24ó·³ CIDRÇüÅ·Πǥ½Ã °¡´É
    a           DNSÀÇ A  ·¹ÄÚµå·Î ¼³Á¤ÇÑ IPÁÖ¼Ò¸¦ sender·Î ¼³Á¤
                ¿¹¸¦ µé¾î dreamwiz.com¶ó¸é
                dreamwiz.comÀÇ IP 211.39.128.129¿Í 211.39.128.129À» sender·Î ÆÇ´ÜÇÔÀ» ÀǹÌ
                a:foo.com ó·³ µµ¸ÞÀÎÀ» ÁöÁ¤ÇÒ ¼öµµ ÀÖ´Ù.
    mx          MX ·¹Äڵ忡 ÁöÁ¤ÇÑ IPÁÖ¼ÒµéÀ» sender·Î ÆÇ´ÜÇ϶ó´Â ÀǹÌ
    ptr         IP¿¡ ´ëÇØ lookupÀ» ÇÏ¿© PTR ·¹Äڵ忡 ÁöÁ¤µÇ¾î ÀÖÀ¸¸é sender·Î ÆÇ´ÜÇ϶ó´Â ÀǹÌ
    include     ÁöÁ¤ÇÑ µµ¸ÞÀÎÀÇ TXT ·¹Äڵ忡¼­ ¼³Á¤À» ã´Â´Ù.
    ~all        ÀÌ method´Â TXT ·¹ÄÚµåÀÇ ³¡¿¡ ³Ö¾îÁֱ⠹ٶõ´Ù.
    ----------  ---------------------------------------------------------------------------

    º¸´Ù ÀÚ¼¼ÇÑ »çÇ×Àº http://spf.pobox.com/mechanisms.html ¸¦ ÂüÁ¶Çϱ⠹ٶõ´Ù.

    3. °ü·Ã »çÀÌÆ®

    * SPF
      http://spf.pobox.com/
      http://spf.pobox.com/faq.html

    * SPF Mechanisms
      http://spf.pobox.com/mechanisms.html

    * An Overview of the Sender Policy Framework
      http://www.msexchange.org/tutorials/Sender-Policy-Framework.html

    * SPF±â¼úÀ» À§ÇÑ DNS ¼³Á¤
      http://www.petri.co.il/sender_policy_framework.htm

    * SPF Council (SPF ±â¼ú, Ç¥ÁØ¿¡ ´ëÇØ ³íÀÇ)
      http://spf.mehnle.net/Home_Page

    * SPF Å×½ºÆ®
      http://www.schlitt.net/spf/tests/

    * Domain Registrars and DNS Providers that Support SPF
      http://www.kitterman.com/spf/txt.html

    * sendmail¿¡¼­ SPF¸¦ À§ÇÑ ¼³Á¤(Milter-SPF ¼³Ä¡ ¹æ¹ý)
      http://spf.pobox.com/sendmail-milter-INSTALL.txt
      http://www.brandonhutchinson.com/Installing_Milter-SPF_with_Sendmail.html

      Ä¿ÇǴнº Ä«Æä ÃÖ±Ù ±Û
    [10/20] Cross Compiler ±ò
    [07/14] SSL ¬¡¬°
    [04/26] Re: µµ½ºÈ­¸é ¿ø°ÝÁ¶Á¾ ¿©ºÎ
    [04/25] µµ½ºÈ­¸é ¿ø°ÝÁ¶Á¾ ¿©ºÎ
    [10/30] Cshell¿¡¼­ ³­¼ö ¼³Á¤
    [10/23] °øÇ×öµµÁÖ½Äȸ»ç SE ±¸ÀÎ Ëì
    [01/26] Re: wgetÀ¸·Î ´Ù¸¥¼­¹ö¿¡ÀÖ´Â µð·ºÅ丮¸¦ °¡Á®¿À·Á°íÇÕ´Ï´Ù.
    [01/25] wgetÀ¸·Î ´Ù¸¥¼­¹ö¿¡ÀÖ´Â µð·ºÅ丮¸¦ °¡Á®¿À·Á°íÇÕ´Ï´Ù.
    [01/11] ƯÁ¤ ¾Èµå·ÎÀ̵å WebView ¹öÀü¿¡¼­ SSL ¹®Á¦ (WebView ¹ö±×)
    [08/01] DNS forwarder (Àü´ÞÀÚ) ¼­¹ö¸¦ ÅëÇؼ­ Äõ¸®ÇÏ¸é ¿ª¹æÇâÀ» ¹Þ¾Æ¿ÀÁú ¸øÇÕ´Ï´Ù.
    [05/16] (ÁÖ)ÈÄÀÌÁî ½Ã½ºÅÛ¿£Áö´Ï¾î (°æ·ÂÀÚ) ¸ðÁý
    [02/15] [AWS] Cloudfront edge È®ÀÎÇϱâ
    [01/20] Mobile Service/eCommerce ±â¾÷¿¡¼­ Server / Java / PHP °³¹ßÀÚ ±¸ÀÎ
    [01/11] źźÇÑ ÆÛºí¸®½Ì ¸ð¹ÙÀϱâ¾÷¿¡¼­ Mobile °³¹ßÀÚ¸¦ ¸ð½Ê´Ï´Ù.
    [01/11] źźÇÑ ÆÛºí¸®½Ì ¸ð¹ÙÀϱâ¾÷¿¡¼­ Web Front °³¹ßÀÚ¸¦ ¸ð½Ê´Ï´Ù.
      New!   ÃÖ±Ù¿¡ µî·ÏÇÑ ÆäÀÌÁö
      KiCad EDA Suite project (Free/Libre/Open-Source EDA Suite) (CAD)
      ¿ÀÇÂij½ºÄÉÀ̵å ijµå (OpenCASCADE CAD)
      QCad for Windows --- GNU GPL (Free Software)
      The Hello World Collection
      IPMI¸¦ È°¿ëÇÑ ¸®´ª½º ¼­¹ö°ü¸®
      DNS ¼³Á¤ °Ë»ç
      nagiosgraph ¼³Ä¡ ¹æ¹ý
      Slony-I ¼³Ä¡ ¹æ¹ý (postgresql replication tool)
      Qmail±â¹ÝÀÇ Anti spam ½Ã½ºÅÛ ±¸ÃàÇϱâ
      clusterssh

    [ ÇÔ²²ÇÏ´Â »çÀÌÆ® ]




    ¿î¿µÁø : ÁÁÀºÁøÈ£(truefeel), ¾ß¼ö(yasu), ¹ü³ÃÀÌ, sCag
    2003³â 8¿ù 4ÀÏ~