Re: spf record

To: debian-isp@lists.debian.org
Subject: Re: spf record
From: Tony Godshall <togo@of.net>
Date: Mon, 23 Jan 2006 10:30:41 -0800
Message-id: <[🔎] 20060123183041.GA12819@of.net>
Reply-to: Tony Godshall <togo@of.net>
In-reply-to: <[🔎] 20060122004359.GA14908@www.lobefin.net>
References: <[🔎] 43D10A66.3020502@goirand.fr> <[🔎] 20060120200106.GD549@verkkotelakka.net> <[🔎] 43D14814.5010207@emenaker.com> <[🔎] 20060120234030.GE549@verkkotelakka.net> <[🔎] 43D1867D.3070409@emenaker.com> <[🔎] 20060121135807.GB14124@www.lobefin.net> <[🔎] 43D2A759.70004@emenaker.com> <[🔎] FE9623A6EA9107A7B84AABF5@dhcp-2-206.wgops.com> <[🔎] 465576530.20060122010038@onee.sk> <[🔎] 20060122004359.GA14908@www.lobefin.net>

According to Stephen Gran,
> This one time, at band camp, Marek Podmaka said:
> > Hello Michael,
> > 
> > Saturday, January 21, 2006, 23:09:28, Michael Loftis wrote:
> > 
> > ML> Have you even looked at AOLs SPF record?  notice the ?all at the end?  The
> > ML> net result of that is that even with systems using SPF it's a 0 change, 
> > ML> except for yet another dns lookup.  AOL knows that if they removed the ?all 
> > ML> tag from the end they'd break a LOT of accounts using aol and sending to 
> > ML> places implementing SPF.  So SPF doesn't really help AOL either.
> > 
> >   Interesting discussion about SPF... There are actually 2 things to
> >   think about - one is implementing SPF on DNS for our domains and the
> >   other is using SPF to limit "bad" incoming mail. In my opinion the
> >   second one has only advantages. So I would like to ask what do you
> >   recommend? Integrate it in postfix somehow? Or is it enough to turn
> >   on SPF checking in SpamAssassin? How?
> 
> As mentioned, SPF breaks forwarded mail.  If you are absolutely
> confident that your users will never receive legitmate mail through a
> forwarder with a return address in a domain that does not have an spf
> all record, feel free to reject it at smtp time.  If not, I would just
> use SA checks.  To enable it in 3.1, you add or uncomment this bit in
> /etc/spamassassin/init.pre:
> 
> loadplugin Mail::SpamAssassin::Plugin::SPF

I concur with that and I believe that is the default for
spamassassin installed from the debian package.

TG

Reply to:

References:
- Re: spf record
  - From: Thomas Goirand <thomas@goirand.fr>
- Re: spf record
  - From: Juha-Matti Tapio <jmtapio@verkkotelakka.net>
- Re: spf record
  - From: Joe Emenaker <joe@emenaker.com>
- Re: spf record
  - From: Juha-Matti Tapio <jmtapio@verkkotelakka.net>
- Re: spf record
  - From: Joe Emenaker <joe@emenaker.com>
- Re: spf record
  - From: Stephen Gran <sgran@debian.org>
- Re: spf record
  - From: Joe Emenaker <joe@emenaker.com>
- Re: spf record
  - From: Michael Loftis <mloftis@modwest.com>
- Re: spf record
  - From: Marek Podmaka <marki@onee.sk>
- Re: spf record
  - From: Stephen Gran <sgran@debian.org>

Prev by Date: Re: monitoring memory,CPU and disk usage for debian servers using SNMP
Next by Date: unsubscribe
Previous by thread: Re: spf record
Next by thread: Re: spf record
Index(es):
- Date
- Thread