SPF Scans on outgoing mail

Josh Dayberry lists at thematthewsgroup.com
Mon Oct 30 22:35:59 GMT 2006 

For someone reason when someone send an e-mail (including myself) with smtp
auth, the e-mail is scanned, then sent to the recipient, the SPF tests will
fail on my server's copy of mailscanner because the e-mail appears to be
from the users computer not the server, but after the e-mail has been
delivered to another server, it no longer appears as being sent from only
the users computer so the SPF tests pass.

The SPF tests are my primary concern because they are the greatest source of
false positives, but ultimately I would rather just not scan e-mails sent
from users who as authenticated.

Thanks again,
Josh Dayberry

-----Original Message-----
From: mailscanner-bounces at lists.mailscanner.info
[mailto:mailscanner-bounces at lists.mailscanner.info] On Behalf Of Alex Neuman
Sent: Monday, October 30, 2006 5:21 PM
To: MailScanner discussion
Subject: Re: SPF Scans on outgoing mail

Josh Dayberry escribió:
>
> Here is my problem. I have many mobile users of my server. When they 
> send e-mail their e-mail fails the SPF tests and their IP is submitted 
> for RBL tests and things of that sort. However, all users with the 
> ability to send e-mail on my server should not have their e-mail 
> scanned at all. Unfortunately I haven’t been able to figure out how to 
> stop MailScanner from scanning e-mail received from users who 
> authenticate. Any ideas would be appreciated.
>
> Josh Dayberry
>
> josh at thematthewsgroup.com
>
The mobile users aren't using your server; they're using someone else's 
server to send out e-mail that should be going out of your server.

Your SPF record is showing the following:

"v=spf1 a mx -all"

Which means only your MX's are allowed to send mail out as 
thematthewsgroup.com; if your users are *actually* connecting to your 
server, and they're authenticating themselves properly (not using 
POP-before-SMTP but *actual* SMTP AUTH), then your SPF checks should 
work, in theory. All of mine do.

What are you using for SPF? In the meantime you can add "~all" instead 
of "-all" to mitigate (not eliminate) the problem while you find out 
what's wrong.
-- 
MailScanner mailing list
mailscanner at lists.mailscanner.info
http://lists.mailscanner.info/mailman/listinfo/mailscanner

Before posting, read http://wiki.mailscanner.info/posting

Support MailScanner development - buy the book off the website!

More information about the MailScanner mailing list