typepad moderation and spf

i left a comment on a typepad-hosted blog, and got the bounce message resulting from the email that typepad sends to the blog owner with the comment. typepad forges the SMTP envelope sender of the message to be the email address used in the comment, and that failed the spf check on the owner’s mail system.

so if you are a typepad blog owner that uses a mail system protected by spf (or other spam measures that make decisions based on the SMTP envelope sender), you can get comments posted to your blog for which you will not see the notification.

(and to be clear, typepad is in the wrong here. it has no reason to forge my email address as the envelope sender. and remember, the SMTP envelope sender is not the same thing as the From header.)

« city of angels to adopt open source?this week in downtown news »