SV: Spoofed email and SPF

Trond M. Markussen markussen at
Mon May 2 10:28:01 UTC 2016

Thanks for the input.

Any suggestions as to the format of such a meta rule? Would this possibly
create false positives if sent from that domain to other domains (using the
same spam filtering)?


Trond M.

-----Opprinnelig melding-----
Fra: MailScanner
[ at] På
vegne av Mark Sapiro
Sendt: 29. april 2016 17:25
Til: mailscanner at
Emne: Re: Spoofed email and SPF

On 04/29/2016 05:05 AM, Trond M. Markussen wrote:
> What is the best way to block spoofed email for one particular domain?
> We have a relatively high score setting for SPF_FAIL already, but need 
> to block all fails for one client/domain..

You could probably make a meta rule for SA that would give a really high
score if SPF_FAIL and from the particular domain.

You could also investigate DMARC. See
<>, and it's first hit at

Mark Sapiro <mark at>        The highway is for gamblers,
San Francisco Bay Area, California    better use your sense - B. Dylan

MailScanner mailing list
mailscanner at

More information about the MailScanner mailing list