I prefer example.com TXT "v=spf1 ip:0.0.0.0/0 -all"
or more sneaky example.com TXT "v=spf1 ip:0.0.0.0/1 ip:128.0.0.0/1 -all" On Thu, Apr 14, 2016 at 1:22 PM, Brandon Long via mailop <mailop@mailop.org> wrote: > What, you don't want to trust all of Apple's /8? > > Anyways, adding spf for an entire cloud provider of generic tools seems > like a really bad idea. We have to make sure with ours that we don't let > people cross domain forge, since they may then spf pass... If you don't > control the software, it is unlikely you can really control that ... Unless > you control the relay or DPI or something. > On Apr 14, 2016 11:16 AM, "Michael Peddemors" <mich...@linuxmagic.com> > wrote: > > SPF is a decent tool, however it always surprises me when banks open their > SPF records to the point where they are at risk. In just the last couple > of days, we see a couple of banks adding to their SPF records, 'all IP(s) > in our cloud providers network /16'. > > Now, (in the latest case most of MicroSoft's Azure) maybe that is what > they are recommended to do, however anyone else using those IP(s) is now in > a perfect position to take advantage of this.. > > :( > > > > -- > "Catch the Magic of Linux..." > ------------------------------------------------------------------------ > Michael Peddemors, President/CEO LinuxMagic Inc. > Visit us at http://www.linuxmagic.com @linuxmagic > ------------------------------------------------------------------------ > A Wizard IT Company - For More Info http://www.wizard.ca > "LinuxMagic" a Registered TradeMark of Wizard Tower TechnoServices Ltd. > ------------------------------------------------------------------------ > 604-682-0300 Beautiful British Columbia, Canada > > This email and any electronic data contained are confidential and intended > solely for the use of the individual or entity to which they are addressed. > Please note that any views or opinions presented in this email are solely > those of the author and are not intended to represent those of the company. > > > _______________________________________________ > mailop mailing list > mailop@mailop.org > https://chilli.nosignal.org/cgi-bin/mailman/listinfo/mailop > > > _______________________________________________ > mailop mailing list > mailop@mailop.org > https://chilli.nosignal.org/cgi-bin/mailman/listinfo/mailop > >
_______________________________________________ mailop mailing list mailop@mailop.org https://chilli.nosignal.org/cgi-bin/mailman/listinfo/mailop
