Yes - I understand that BUT here's an excerpt from my spf.log: 144.132.220.223 [EMAIL PROTECTED] [home]: UNKNOWN 144.132.220.223 [EMAIL PROTECTED] [home]: UNKNOWN 203.132.253.27 [EMAIL PROTECTED] [manly]: PASS 216.153.219.226 [EMAIL PROTECTED] [front-desk]: UNKNOWN
203.132.253.27 PASSED correctly. 144.132.220.223 are UNKNOWN even though I used SMTP AUTH to send them. 216.153.219.226 is truly UNKNOWN and can be considered forged as far as I'm concerned. If SPF is implemented at the MTA level then the UNKNOWNS would be rejected by the receiving MTA as they would have failed if I had "-all" implemented. _____________________________________ Glen Harvy Aquarius Communications for all your Internet Needs. Phone 9977 3788 Fax 9977 3844 > -----Original Message----- > From: [EMAIL PROTECTED] > [mailto:[EMAIL PROTECTED] Behalf Of Andy Schmidt > Sent: Friday, 26 December 2003 15:48 > To: [EMAIL PROTECTED] > Subject: RE: [Declude.JunkMail] SPF Fail & Remote EMail clients. > > > No, if all your users use SMTP AUTH to send their email through YOUR mail > server, then YOUR mail server will be sending the email to anyone outside > your company - which will satisfy the SPF record. > > Third parties don't care where the email originally came fome - only which > mail server was used to deliver it to that third party. > > You implement authenticated SMTP by specifying it in your Email software > (e.g., Outlook Express, Outlook, Eudora, Netscape - take your pick). Look > for something like "Outgoing Mail Server Requires Authentication"). > > Best Regards > Andy Schmidt > > Phone: +1 201 934-3414 x20 (Business) > Fax: +1 201 934-9206 > > > > -----Original Message----- > From: [EMAIL PROTECTED] > [mailto:[EMAIL PROTECTED] On Behalf Of Glen Harvy > Sent: Thursday, December 25, 2003 11:41 PM > To: [EMAIL PROTECTED] > Subject: RE: [Declude.JunkMail] SPF Fail & Remote EMail clients. > Importance: High > > > > > > > If you implement SMTP AUTH > > How do you do that (or confirm you have)? > > and white list anyone who is using an > > authenticated connection, then this will override the SPF FAIL - thus > > leaving only those to truly fail who are not using authenticated SMTP. > > > > Whitelisting surely will only affect Declude Junkmail. > > If another mail server uses SPF then they will receive the FAIL instead of > UNKNOWN and legitimate mail will not be delivered. > > > Best Regards > > Andy Schmidt > > > > Phone: +1 201 934-3414 x20 (Business) > > Fax: +1 201 934-9206 > > > > > > > > -----Original Message----- > > From: [EMAIL PROTECTED] > > [mailto:[EMAIL PROTECTED] On Behalf Of Glen Harvy > > Sent: Thursday, December 25, 2003 08:27 PM > > To: Declude Junkmail > > Subject: [Declude.JunkMail] SPF Fail & Remote EMail clients. > > Importance: High > > > > > > Hi, > > > > First of all - Merry Xmas :-) > > > > This is slightly off topic however I thought I would raise it here as > > it affects the actions to be taken when the SPF Fails. > > > > I have been using SPF for a few days now and have already detected my > > own email address being used "illegally" as well as several of my > > users. I set the tests to unknown (?all) so there is no problems yet. > > > > I can't (nor wish) to stop my users accessing my email servers from > > other than my IP addresses but I can't see how I can allow this and at > > the same time fully implement the usefulness of SPF. > > > > Has this issue been (or being) addressed? The spf website refers to > > SSAL and POP-before-SMTP but this doesn't help with IMail and more > > specifically Declude Junkmail as far as I can see. > > > > > > > > _____________________________________ > > Glen Harvy > > Aquarius Communications > > for all your Internet Needs. > > Phone 9977 3788 Fax 9977 3844 > > > > --- > > [This E-mail was scanned for viruses by Declude Virus > > (http://www.declude.com)] > > > > --- > > This E-mail came from the Declude.JunkMail mailing list. To > > unsubscribe, just send an E-mail to [EMAIL PROTECTED], and type > > "unsubscribe Declude.JunkMail". The archives can be found at > > http://www.mail-archive.com. > > > > --- > > [This E-mail was scanned for viruses by Declude Virus > (http://www.declude.com)] > > --- > This E-mail came from the Declude.JunkMail mailing list. To unsubscribe, > just send an E-mail to [EMAIL PROTECTED], and type "unsubscribe > Declude.JunkMail". The archives can be found at > http://www.mail-archive.com. > > --- > [This E-mail was scanned for viruses by Declude Virus > (http://www.declude.com)] > > --- > This E-mail came from the Declude.JunkMail mailing list. To unsubscribe, > just send an E-mail to [EMAIL PROTECTED], and type "unsubscribe > Declude.JunkMail". The archives can be found at > http://www.mail-archive.com. > > --- > [This E-mail was scanned for viruses by Declude Virus (http://www.declude.com)] --- This E-mail came from the Declude.JunkMail mailing list. To unsubscribe, just send an E-mail to [EMAIL PROTECTED], and type "unsubscribe Declude.JunkMail". The archives can be found at http://www.mail-archive.com. --- [This E-mail was scanned for viruses by Declude Virus (http://www.declude.com)] --- This E-mail came from the Declude.JunkMail mailing list. To unsubscribe, just send an E-mail to [EMAIL PROTECTED], and type "unsubscribe Declude.JunkMail". The archives can be found at http://www.mail-archive.com.
