SPF
William Burns
William.Burns at AEROFLEX.COM
Wed Aug 11 20:30:36 IST 2004
<x-flowed>
Alex:
Yup, you've got the approach...
Sorry, I haven't implemented SPF yet, so I'm not the best resource for
implementation info.
But, here are links you could try for RPMs:
http://libspf.org/files.html
http://spf.userfriendly.net/downloads.html
-Bill
Alex Neuman wrote:
>Ok... So would a conservative-yet-effective approach be:
>
>1. Sendmail gets message, checks SPF. If SPF records say mail came from
>unauthorized server, drop the connection. If no SPF available, receive
>e-mail anyways (for now).
>2. MailScanner gets message from Sendmail, passes message to SpamAssassin
>for processing. SpamAssassin checks SPF records, assign arbitrary negative
>number (say, -2.0) if SPF records check out ok, otherwise process as usual.
>
>Less conservative efforts would range from harsh (assign positive score to
>non-SPF messages when checked by SA) to brutal (drop non-SPF messages at MTA
>level).
>
>Is my understanding correct? Has anybody who's already implemented SPF at
>the MTA level using RPM-installed sendmail worked out something like this,
>and if so, where did you find info on it?
>
>Thanks...
>
>-----Original Message-----
>From: MailScanner mailing list [mailto:MAILSCANNER at JISCMAIL.AC.UK] On Behalf
>Of William Burns
>Sent: Tuesday, August 10, 2004 12:42 PM
>To: MAILSCANNER at JISCMAIL.AC.UK
>Subject: Re: SPF
>
>John:
>
>SPF in your MTA blocks mail from IPs that don't belong to a senders
>domain. (if SPF is configured for that domain)
>
>
> ....
-------------------------- MailScanner list ----------------------
To leave, send leave mailscanner to jiscmail at jiscmail.ac.uk
Before posting, please see the Most Asked Questions at
http://www.mailscanner.biz/maq/ and the archives at
http://www.jiscmail.ac.uk/lists/mailscanner.html
</x-flowed>
More information about the MailScanner
mailing list