On Thu, 17 Nov 2005, Stever wrote:
However, when I send an email from an unrelated ip address (should
return a hard fail), it still happily gets accepted by Yahoo, Hotmail,
gmail, and aol. These emails should not even return in the email box?
What gives? I know these domains have spf records, but I am not sure if
their email servers actually CHECK other people's spf records and
filters by the rules of spf.
Anyone knows what's going on?
Big mail providers can't generally reject on SPF FAIL except with explicit user
permission. This is because many users user have configured forwarders that
leave MFROM unchanged (don't rewrite MFROM). At the very least, the user
would need to list all such forwarders on some web management screen with
the mail provider. So even if the mail provider supports rejecting
on SPF FAIL, each recipient must specifically enable this so that they
can provide a list of trusted forwarders.
--
Stuart D. Gathman <stuart(_at_)bmsi(_dot_)com>
Business Management Systems Inc. Phone: 703 591-0911 Fax: 703 591-6154
"Confutatis maledictis, flamis acribus addictis" - background song for
a Microsoft sponsored "Where do you want to go from here?" commercial.
-------
Sender Policy Framework: http://www.openspf.org/
Archives at http://archives.listbox.com/spf-discuss/current/
To unsubscribe, change your address, or temporarily deactivate your
subscription,
please go to
http://v2.listbox.com/member/?listname=spf-discuss(_at_)v2(_dot_)listbox(_dot_)com