What happens if a receiver can do the accreditation checks?
• A: Without a real-time accreditation check, receivers are at risk trusting a CSV report of “authorized”; but until spammers adjust, it would be relatively safe to let this override an IP-based blacklist. And surely the authorization info, recorded in a Received header, will prove helpful in directing spam reports.