Greetings, I've recently configured SPF on my Courier mail server and have found a few issues with it. I'm not sure if these issues are merely par for the course with SPF or are issues with my configuration. So, I'm asking the list: Is this normal behavior for SPF?
I've set the following options in /etc/courier/bofh: opt BOFHSPFHELO=all opt BOFHSPFMAILFROM=pass,neutral,none,softfail,unknown opt BOFHSPFFROM=pass,neutral,none,softfail,unknown opt BOFHSPFHARDERROR=fail,softfail opt BOFHSPFTRUSTME=1 opt BOFHSPFNOVERBOSE=1 Issue #1: Very few folks seem to pass the SPF for HELO, so I've found myself using the value 'all' for those few cases that the desired message might pass MAILFROM or FROM, but not HELO. Issue #2: Not everyone has implemented SPF (most annoyingly Yahoo mail), so I had originally set BOFHSPFMAILFROM and BOFHSPFFROM to 'pass,none,neutral'. I noted that mail forwarded from other accounts was marked as 'softfail', so I added that to the list of values. After I noticed that my mail server was denying specific legitimate mail messages from some of my mailing lists, I had to put in 'unknown' because this is how the SPF marked them and I wanted to get the messages. Issue #3: If I change BOFHSPFTRUSTME from 1 to 0, the local mail agent doesn't work at all. I can't get my local log reports. I realize it is almost meaningless to run SPF on one's self, but I wanted to see if my DNS entries were being correctly interpreted. It makes sense that 127.0.0.1 would not survive a DNS TXT lookup, so I guess I shouldn't have expected this to work well. So, I ask the list: Is this normal for SPF? Thanks for your time, Shawn M. Jones ------------------------------------------------------------------------- Using Tomcat but need to do more? Need to support web services, security? Get stuff done quickly with pre-integrated technology to make your job easier Download IBM WebSphere Application Server v.1.0.1 based on Apache Geronimo http://sel.as-us.falkag.net/sel?cmd=lnk&kid=120709&bid=263057&dat=121642 _______________________________________________ courier-users mailing list [email protected] Unsubscribe: https://lists.sourceforge.net/lists/listinfo/courier-users
