On Fri, 21 Oct 2005, Alex van den Bogaerdt wrote:
to their record. If you receive a forgery and if the domain was SPF
protected, you should have rejected it. This is how the system works.
Why would you want to accept forgeries?
Because the sender company is run by complete idiots when it
comes to email, and all their legitmate mail gets an SPF fail.
E.g. blockbuster.com sends emails notifications with a MAIL FROM of
custhelp.com - which custhelp.com does not authorize them to do.
However, pymilter lets you configure policy by domain. So, my access
file includes:
SPF-Neutral:aol.com REJECT
SPF-Fail:custhelp.com CBV
SPF-Softfail: CBV
SPF-Softfail:ebay.com REJECT
SPF-PermError: CBV
--
Stuart D. Gathman <stuart(_at_)bmsi(_dot_)com>
Business Management Systems Inc. Phone: 703 591-0911 Fax: 703 591-6154
"Confutatis maledictis, flamis acribus addictis" - background song for
a Microsoft sponsored "Where do you want to go from here?" commercial.
-------
Sender Policy Framework: http://spf.pobox.com/
Archives at http://archives.listbox.com/spf-discuss/current/
To unsubscribe, change your address, or temporarily deactivate your
subscription,
please go to
http://v2.listbox.com/member/?listname=spf-discuss(_at_)v2(_dot_)listbox(_dot_)com