On Tue, 28 Feb 2006, Erwin Kodiat wrote:
I'm new to SPF, tried to setup an SPF record for my domain name. I used
Yahoo Premium service so I can use Yahoo webmail while having my own email
address as the sender. I can't find any SPF command that works like
wildcard. I need this since Yahoo keep changing their SMTP server name while
sending email, for instance webmail5104.yahoo.com and the other time
webmail7637.yahoo.com. Is it possible to have a wildcard or pattern matching
in SPF record?
mydomain.com IN TXT "v=spf1 ip4:1.2.3.4 ?ptr:yahoo.com -all"
where 1.2.3.4 is your own MTA when not using yahoo webmail.
There is no point in trying to get a PASS from the Yahoo webmail (like
Scott Kitterman suggested), because even after finding all their outgoing
servers by trial and error, they have no forgery prevention in place,
so any yahoo email user can still forge your domain.
Suggestion:
1. Run your own imap server in house (e.g. Exchange for Windows
or dovecot for Linux).
2. Buy a $200 wallmart PC. Install Centos-3, squirrel mail
(http://squirrelmail.org) and imapproxy (http://imapproxy.org)
pointed to your imap server. Disk is needed only to boot and load
PHP modules. This system could run from CD. (Note to self: use rpath.com
to build such a CD).
3. Put your webmail PC on your office DMZ
3. (Optional.) Buy a $30 cert so that random browsers don't pop up
a warning dialog.
--
Stuart D. Gathman <stuart(_at_)bmsi(_dot_)com>
Business Management Systems Inc. Phone: 703 591-0911 Fax: 703 591-6154
"Confutatis maledictis, flammis acribus addictis" - background song for
a Microsoft sponsored "Where do you want to go from here?" commercial.
-------
Sender Policy Framework: http://www.openspf.org/
Archives at http://archives.listbox.com/spf-discuss/current/
To unsubscribe, change your address, or temporarily deactivate your
subscription,
please go to
http://v2.listbox.com/member/?listname=spf-discuss(_at_)v2(_dot_)listbox(_dot_)com