So basically SPF is worthless. You can define all the IPs that legitimate mail for the domain should be coming from and exclude everything else with a -all and mail servers are just supposed to ignore that and look for a DMARC record?
Talk about robbing Peter to pay Paul. What's next? Another DNS record to describe whether or not the DMARC record should be honored?
_______________________________________________ mailop mailing list mailop@mailop.org https://list.mailop.org/listinfo/mailop