Folks -
I am having some issues telling whether or not spf is working due to
some errors i am seeing coming back in the email headers from one of my
users. I have spf and srs setup in accordance with all the information i
could find at pobox (at least i believe i have). And i have srs embedded
within sendmail for envelope rewriting. Anyway, i am seeing some issues
here.
Here is my current spf1 record:
userfriendly.net. 86400 IN TXT "v=spf1 mx a:sunshine.
userfriendly.net a:nomad.userfriendly.net a:niteowl.userfriendly.net a:
moonbeam.userfriendly.net ip4:68.22.33.177/32 ip4:68.22.33.178/32
ip4:68.22.33.179/32 ip4:68.22.33.180/32 ip4:68.22.33.181/32
ip4:68.22.33.182/32 -all"
My basic thought here was to specify the 6 ip addresses i KNOW are
sending email through userfriendly, as well as the "named" hosts within
the network. Any problems here with my thought processes?
Now, my partner received an email with the following headers:
<snip>
From partners(_at_)userfriendly(_dot_)net Sun Jun 13 03:57:14 2004
Return-Path: <partners(_at_)userfriendly(_dot_)net>
Received: from PC31 ([218.38.114.41])by niteowl.userfriendly.net
(8.12.10/8.12.10 Public port 25! WARNING... abuse, unauthorized access,
or spam sent to this host constitutes acceptance of civil and or
criminal liability by the sender! You have been warned. No UCE!) with
SMTP id i5D7vIbF000529 for <partners(_at_)userfriendly(_dot_)net>; Sun, 13 Jun
2004
03:57:20 -0400
Received: from 208.243.96.251 by 218.38.114.41; Mon, 14 Jun 2004
00:46:05 +0400
Message-ID: <ULDIOEPWTBZIHDJOZKJGQK(_at_)nasacom(_dot_)ch>
From: "partners(_at_)userfriendly(_dot_)net"
<partners(_at_)userfriendly(_dot_)net>
Reply-To: "partners(_at_)userfriendly(_dot_)net"
<partners(_at_)userfriendly(_dot_)net>
To: partners(_at_)userfriendly(_dot_)net
Subject: [UFN-SpamCop] partners(_at_)userfriendly(_dot_)net
Date: Sun, 13 Jun 2004 23:40:05 +0300
MIME-Version: 1.0
Content-Type: multipart/mixed; boundary="----------=_40CC08E4.23BD02E5"
X-Spam-Flag: YES
X-Spam-Status: Yes, score=7.9 required=5.0 tests=ADDRESS_IN_SUBJECT,
ALL_TRUSTED,BAD_CREDIT,DCC_CHECK,DIGEST_MULTIPLE,MY_MISC_BODY,
PYZOR_CHECK,RATWR19_MESSID,RCVD_BY_IP,RCVD_DOUBLE_IP_SPAM
autolearn=no version=3.0.0-r9952
X-Spam-Level: *******
X-Spam-Checker-Version: SpamAssassin 3.0.0-r9952 (2004-04-09) on
niteowl.userfriendly.net
X-DCC-dcc.uncw.edu-Metrics: niteowl 1201; Body=1 Fuz1=1 Fuz2=1
Received-SPF: unknown (niteowl: error in processing during lookup of
partners(_at_)userfriendly(_dot_)net)
Status:
</snip>
Now obviously SPF was supposed to prevent such an email from entering
the system as it did NOT come from a permitted sender, yet the SPF check
FAILS, and thats the piece i am trying to figure out why. When i run
spftest on niteowl, everything appears to work fine - yet i still
receive ERRORS IN PROCESSING. I even ran my records against some of the
test suites on the website and the penguin site as well, and everything
seemed to work correctly there. So i am a little confused as to what is
going on, and just how to "debug."
What exactly is causing that, and how can i FIX this? And i need a
favor, can anyone out there in the real world tell if SRS is functioning
correctly for userfriendly.net?
Thank you all in advance for your assistance
Michael Weiner
Systems Administrator
The UserFriendly Network (UFN)
-------
Sender Policy Framework: http://spf.pobox.com/
Archives at http://archives.listbox.com/spf-discuss/current/
Send us money! http://spf.pobox.com/donations.html
To unsubscribe, change your address, or temporarily deactivate your
subscription,
please go to
http://v2.listbox.com/member/?listname=spf-discuss(_at_)v2(_dot_)listbox(_dot_)com
signature.asc
Description: This is a digitally signed message part