SPF Scans on outgoing mail
Josh Dayberry
lists at thematthewsgroup.com
Tue Oct 31 02:01:37 GMT 2006
They are the same address. Any idea how I can stop mailscanner from scanner mails from authenticated users?
----- Original Message -----
From: Pravin Rane
To: MailScanner discussion
Sent: Monday, October 30, 2006 6:46 PM
Subject: Re: SPF Scans on outgoing mail
Are your MX and SMTP servers are on different IP address ?
If yes
Then add your SMTP server IP address in SPF record. Which will just indicate that MX's as well as SMTP are allowed to send mail with from address as thematthewsgroup.com
On 10/31/06, Josh Dayberry <lists at thematthewsgroup.com> wrote:
For someone reason when someone send an e-mail (including myself) with smtp
auth, the e-mail is scanned, then sent to the recipient, the SPF tests will
fail on my server's copy of mailscanner because the e-mail appears to be
from the users computer not the server, but after the e-mail has been
delivered to another server, it no longer appears as being sent from only
the users computer so the SPF tests pass.
The SPF tests are my primary concern because they are the greatest source of
false positives, but ultimately I would rather just not scan e-mails sent
from users who as authenticated.
Thanks again,
Josh Dayberry
-----Original Message-----
From: mailscanner-bounces at lists.mailscanner.info
[mailto:mailscanner-bounces at lists.mailscanner.info] On Behalf Of Alex Neuman
Sent: Monday, October 30, 2006 5:21 PM
To: MailScanner discussion
Subject: Re: SPF Scans on outgoing mail
Josh Dayberry escribió:
>
> Here is my problem. I have many mobile users of my server. When they
> send e-mail their e-mail fails the SPF tests and their IP is submitted
> for RBL tests and things of that sort. However, all users with the
> ability to send e-mail on my server should not have their e-mail
> scanned at all. Unfortunately I haven't been able to figure out how to
> stop MailScanner from scanning e-mail received from users who
> authenticate. Any ideas would be appreciated.
>
> Josh Dayberry
>
> josh at thematthewsgroup.com
>
The mobile users aren't using your server; they're using someone else's
server to send out e-mail that should be going out of your server.
Your SPF record is showing the following:
"v=spf1 a mx -all"
Which means only your MX's are allowed to send mail out as
thematthewsgroup.com; if your users are *actually* connecting to your
server, and they're authenticating themselves properly (not using
POP-before-SMTP but *actual* SMTP AUTH), then your SPF checks should
work, in theory. All of mine do.
What are you using for SPF? In the meantime you can add "~all" instead
of "-all" to mitigate (not eliminate) the problem while you find out
what's wrong.
--
MailScanner mailing list
mailscanner at lists.mailscanner.info
http://lists.mailscanner.info/mailman/listinfo/mailscanner
Before posting, read http://wiki.mailscanner.info/posting
Support MailScanner development - buy the book off the website!
--
MailScanner mailing list
mailscanner at lists.mailscanner.info
http://lists.mailscanner.info/mailman/listinfo/mailscanner
Before posting, read http://wiki.mailscanner.info/posting
Support MailScanner development - buy the book off the website!
--
Regards
Pravin
------------------------------------------------------------------------------
--
MailScanner mailing list
mailscanner at lists.mailscanner.info
http://lists.mailscanner.info/mailman/listinfo/mailscanner
Before posting, read http://wiki.mailscanner.info/posting
Support MailScanner development - buy the book off the website!
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.mailscanner.info/pipermail/mailscanner/attachments/20061030/a4b00a82/attachment.html
More information about the MailScanner
mailing list