My question below boils down to: "is there a syntax for SPF (possibly the
macro language?) which enables "-all" to be excluded from only some
address of a domain?"
Yes, this can be done by the 'exists' mechanism:
v=spf1 exists:%(L).spf.example.com -all"
(With the 'exists' mechanism and a custom DNS server you can do any test you
want to do with the information you have at SMTP time.)
Great! Please elaborate on the steps a novice would take to configure all
this? Would it be reasonable for a novice (the millions of personal domains)?
Thanks,
Shelby