On 30.04.19 04:45, Noel Butler via mailop wrote: > On 30/04/2019 05:35, Andreas Klein via mailop wrote: >> so the SPF >> check will fail if the FROM of the original message is retained and an >> SPF record exists for that domain. >> > > ancient FUD > > I was a very, *very* early adopter of SPF, I always hear these claims, > but my mails always get through SPF tests (much to the annoyance of some > LOL), and I use hardfail -all.
No FUD at all. You are just relying on some recipients not enforcing your -all. We have a lot of students forwarding their emails to external mailboxes (usually freemailers even though they have more options here). I can show you all kinds of examples where the forwarding is rejected in those cases because the new "sending IPs" are from our machines, not the ones listed in the From's SPF record. And no, I don't do SRS, because I don't want to do workarounds to support a protocol that was broken by design in the first place. It's your decision (-all) that you don't want these mails delivered to the recipients, so I don't really care. Regards, Thomas Walter -- Thomas Walter Datenverarbeitungszentrale FH Münster - University of Applied Sciences - Corrensstr. 25, Raum B 112 48149 Münster Tel: +49 251 83 64 908 Fax: +49 251 83 64 910 www.fh-muenster.de/dvz/ _______________________________________________ mailop mailing list mailop@mailop.org https://chilli.nosignal.org/cgi-bin/mailman/listinfo/mailop