On Tue, 2004-10-05 at 12:08, Mark wrote:
Then add a TXT record. :) Treat the SPF record for "server1.yellowhead.com"
as if it were the, single, SPF record for an MX:
server1.yellowhead.com. TXT "v=spf1 a -all"
It would be nice if spf libraries programs allowed for admins/recipients
to use a "best guess" algorithm to insert implied records of "v=spf1 a
~all" or "v=spf1 a -all", depending on local policy, for tests of HELO
scope for cases in which the helo domain doesn't have an spf record.
(Mini-Rant: I wish we could ignore the helo scope completely within spf
tests, and simply reject all messages where the A record for the HELO
domain doesn't include the incoming IP address. I sort of wish a few of
the larger ISPs would start enforcing that, causing everyone to fix
their servers within a few months--if that *could* happen, we could
ignore this whole HELO scope thing completely with regards to spf, just
doing HELO tests separately and simply, without entrenching further
complication of HELO tests such that one machine is allowed to claim to
be another--something that HELO isn't supposed to do in the first
place.)
--
Mark Shewmaker
mark(_at_)primefactor(_dot_)com