On Fri, Mar 12, 2004 at 12:18:04PM +0000, David Woodhouse wrote:
On Thu, 2004-03-11 at 21:27 -0800, Jeremy T. Bouse wrote:
I'm asking over here on spf-discuss as srs-discuss seems to be
rather dead and the issue seems to tie back with threads over here.
I've recently tried to put SRS into work for all forwarded
return-paths from my MX servers and have ran into the problem that if I
try to do a CBV it fails with "550 5.1.1 User unknown".
The SRS0 addresses should not receive mail with a non-empty
reverse-path. They should only ever receive bounces.
This was a bounce being sent back which had the SRS signed
return-path address.
Could it be that your system is rejecting mail with non-empty
reverse-path with the message you quote above ("550 5.1.1 User
unknown")?
The actual 550 5.1.1 error did include the SRS0 address I just
simply did not include it for berevity.
And could it also be that your CBV is using a non-empty MAIL FROM:
address, so it doesn't look like a bounce, and is getting rejected
accordingly?
Actually at this time I have no CBV in place on my servers. In
this instance it came as a result of me trying to post to a
SourceForge.net mailing list and their CBV tried to verify the
return-path which was SRS signed address.
There's actually quite a few people doing buggy CBV with non-empty
reverse-path. Most of them seem to use postmaster@, so I've made my
implementation of SRS accept mail from postmaster@ to the SRS0 addresses
too.
Regards,
Jeremy