On Mon, 24 Jul 2006 10:54:48 -0700 Robin Rowe
<rower(_at_)movieeditor(_dot_)com> wrote:
Hi. Question from new spf user. The email header below has a return-path
to a spammer but a forged From of ebay.com. Why wasn't it REJECTED?
Thank you!
Because SPF operates on Mail From (which you see rewritten as return path
in the delivered message) and not the From address in the body.
Your SPF policy daemon logs this:
Jul 24 11:38:00 D2795 postfix/policy-spf[1122]: : SPF none:
smtp_comment=SPF: domain of sender root(_at_)ns32885(_dot_)ovh(_dot_)net does
not
designate mailers, header_comment=c
d.movieeditor.com: domain of root(_at_)ns32885(_dot_)ovh(_dot_)net does not
designate
permitted sender hosts
This is the correct SPF answer. the policy interface you are using in
Postfix does not have access to any information about the body of the
message. In fact, the just released Postfix 2.3 was delayed to add a
milter interface to give access to the message body for body authentication
technologies such as DKIM.
Scott K
-------
Sender Policy Framework: http://www.openspf.org/
Archives at http://archives.listbox.com/spf-discuss/current/
To unsubscribe, change your address, or temporarily deactivate your
subscription,
please go to
http://v2.listbox.com/member/?listname=spf-discuss(_at_)v2(_dot_)listbox(_dot_)com