SPF Scans on outgoing mail

Pravin Rane pravin.rane at gmail.com
Tue Oct 31 00:46:58 GMT 2006


Are your MX and SMTP servers are on different IP address ?

If yes

Then add your SMTP server IP address in SPF record. Which will just indicate
that  MX's as well as SMTP are allowed to send mail with from address as
thematthewsgroup.com





On 10/31/06, Josh Dayberry <lists at thematthewsgroup.com> wrote:
>
> For someone reason when someone send an e-mail (including myself) with
> smtp
> auth, the e-mail is scanned, then sent to the recipient, the SPF tests
> will
> fail on my server's copy of mailscanner because the e-mail appears to be
> from the users computer not the server, but after the e-mail has been
> delivered to another server, it no longer appears as being sent from only
> the users computer so the SPF tests pass.
>
> The SPF tests are my primary concern because they are the greatest source
> of
> false positives, but ultimately I would rather just not scan e-mails sent
> from users who as authenticated.
>
> Thanks again,
> Josh Dayberry
>
> -----Original Message-----
> From: mailscanner-bounces at lists.mailscanner.info
> [mailto:mailscanner-bounces at lists.mailscanner.info] On Behalf Of Alex
> Neuman
> Sent: Monday, October 30, 2006 5:21 PM
> To: MailScanner discussion
> Subject: Re: SPF Scans on outgoing mail
>
> Josh Dayberry escribió:
> >
> > Here is my problem. I have many mobile users of my server. When they
> > send e-mail their e-mail fails the SPF tests and their IP is submitted
> > for RBL tests and things of that sort. However, all users with the
> > ability to send e-mail on my server should not have their e-mail
> > scanned at all. Unfortunately I haven't been able to figure out how to
> > stop MailScanner from scanning e-mail received from users who
> > authenticate. Any ideas would be appreciated.
> >
> > Josh Dayberry
> >
> > josh at thematthewsgroup.com
> >
> The mobile users aren't using your server; they're using someone else's
> server to send out e-mail that should be going out of your server.
>
> Your SPF record is showing the following:
>
> "v=spf1 a mx -all"
>
> Which means only your MX's are allowed to send mail out as
> thematthewsgroup.com; if your users are *actually* connecting to your
> server, and they're authenticating themselves properly (not using
> POP-before-SMTP but *actual* SMTP AUTH), then your SPF checks should
> work, in theory. All of mine do.
>
> What are you using for SPF? In the meantime you can add "~all" instead
> of "-all" to mitigate (not eliminate) the problem while you find out
> what's wrong.
> --
> MailScanner mailing list
> mailscanner at lists.mailscanner.info
> http://lists.mailscanner.info/mailman/listinfo/mailscanner
>
> Before posting, read http://wiki.mailscanner.info/posting
>
> Support MailScanner development - buy the book off the website!
>
> --
> MailScanner mailing list
> mailscanner at lists.mailscanner.info
> http://lists.mailscanner.info/mailman/listinfo/mailscanner
>
> Before posting, read http://wiki.mailscanner.info/posting
>
> Support MailScanner development - buy the book off the website!
>



-- 
Regards

Pravin
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.mailscanner.info/pipermail/mailscanner/attachments/20061031/bebc9ebb/attachment.html


More information about the MailScanner mailing list