spf-discuss
[Top] [All Lists]

Re: A HELO Question

2004-03-06 11:47:43
In <404A190C(_dot_)5070208(_at_)greptar(_dot_)com> Nathan Wharton 
<naw(_at_)greptar(_dot_)com> writes:

From what I understand, if a domain hasn't published any SPF
records, or doesn't even exist, I shouldn't be getting an SPF fail
on something from them.  Is this right?

That is correct.

If it is, then that has not been my experience.  If a bounce comes
from a machine that has a bogus HELO, it gets an SPF fail:
[example from the postfix SPF stuff deleted]

I would say that this is a bug in the postfix policy-spf code.


So, I was hoping the new HELO work was going to take care of this,
but it seems that there is going to be more restrictive rules on
HELO, not less.

The change that Meng announced about the HELO usage is an *option* to
allow for a more restrictive checking of the HELO string, but only for
those mail admins who want it to be more restrictive.


-wayne


<Prev in Thread] Current Thread [Next in Thread>