Hello,
Yes I am receiving emails that SPF should not allow.
BUT and it is a big BUT! I have clients that have mobile
devices that use their mobile device ISP smtp server to
send mail.
If I make SPF only allow MY smtp servers then these folks
cannot send mail from their mobile devices!
No, none of my accounts are sending out spam emails.
All emails are from smtp servers outside of my control.
Sorry if I am wrong to do this here but I thought I might include one as an
example...
NB The ONLY valid email address is mine t...@ycs.com.au, all the others
are rubbish!
---------- ACTUAL EXAMPLE RECEIVED ------------
From - Thu Nov 18 12:36:23 2010
X-Account-Key: account11
X-UIDL: 1290043761.13702.indialau.bigpuddle.net,S=2602
X-Mozilla-Status: 0011
X-Mozilla-Status2: 00000000
X-Mozilla-Keys:
Return-Path:<bi...@gpdv.com.au>
Delivered-To: t...@ycs.com.au
Received: (qmail 13700 invoked by uid 89); 18 Nov 2010 01:29:21 -0000
Received: from unknown (HELO ?222.119.250.144?) (222.119.250.144)
by indialau.bigpuddle.net with SMTP; 18 Nov 2010 01:29:20 -0000
Received-SPF: none (indialau.bigpuddle.net: domain at gpdv.com.au does not
designate permitted sender hosts)
Received: from 222.119.250.144(helo=vkddebf.pnpxyhcbajz.info)
by with esmtpa (Exim 4.69)
(envelope-from )
id 1MM3A9-7030gu-RU
for t...@ycs.com.au; Thu, 18 Nov 2010 10:29:20 +0900
To:<t...@ycs.com.au>,
<to...@ycs.com.au>,
<stee...@ycs.com.au>,
<accplusk...@ycs.com.au>
Cc:<accpluss...@ycs.com.au>,
<accpluse...@ycs.com.au>,
<accplush...@ycs.com.au>,
<accplusq...@ycs.com.au>,
<accplusu...@ycs.com.au>,
<accplusw...@ycs.com.au>,
<accplust...@ycs.com.au>,
<accplusr...@ycs.com.au>,
<accplusf...@ycs.com.au>
Subject: Re: CV
From:<t...@ycs.com.au>,
<to...@ycs.com.au>,
<stee...@ycs.com.au>,
<accplusk...@ycs.com.au>
Cc:<accpluss...@ycs.com.au>,
<accpluse...@ycs.com.au>,
<accplush...@ycs.com.au>,
<accplusq...@ycs.com.au>,
<accplusu...@ycs.com.au>,
<accplusw...@ycs.com.au>,
<accplust...@ycs.com.au>,
<accplusr...@ycs.com.au>,
<accplusf...@ycs.com.au>
MIME-Version: 1.0
Importance: High
Content-Type: text/html
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
<HTML><HEAD>
<META http-equiv=Content-Type content="text/html; charset=iso-8859-2">
</HEAD>
<BODY>A foreign owned company is looking for Online Sales Administrator to assist in
the day to day running of our outlet online.<br>
<br>
<b>DUTIES INCLUDE:</b><br>
Administrating day-to-day financial responsibilities for our clients<br>
data input<br>
capable to fast reply to all emails coming from your personal HR<br>
Manager<br>
Preparing brief summary reports, and weekly financial reports<br>
<br>
<b>SKILLS REQUIRED:</b><br>
1. Keyboard Typing.<br>
2. basic Miscrosoft Office skills.<br>
3. constantly available on the phone during the daytime<br>
<br>
<b>PREVIOUS EXPERIENCE OR TRAINING IN THE FOLLOWING WOULD BE AN
ADVANTAGE</b>:<br>
Office administration<br>
Call handling<br>
Customer service<br>
Typing and correspondence<br>
Email correspondence<br>
Research including web based research<br>
Database management<br>
<br>
<b>HOURS:</b><br>
Mon to Fri 9am-3pm - Weekends as required<br>
Rate of pay by negotiation, minimum guaranteed GBP 1,500 PER MONTH.<br>
<br>
<b>Location:</b> AUSTRALIA ONLY<br>
<b>AGE:</b> at least 18 year old, or older<br>
<br>
To apply please email<b>of...@australia-resume.com</b></BODY></HTML>
---------- ACTUAL EXAMPLE RECEIVED ------------
On 18/11/2010 7:05 PM, Tonix (Antonio Nati) wrote:
Sorry, I don't understand problem, again.
Are you receiving e-mails which SPF should not allow?
Any of your accounts is sending out spam emails?
Tonino
Il 18/11/2010 07:05, Tony White ha scritto:
Hi folks,
Will this cure my issue, at least for now...
1. Have all my users use the QMT servers via SMTP-AUTH.
2. Set spf records to only allow my ip addresses to send mail for these domains.
The original problem was/is...
email being sent to my servers using valid/invalid accounts for domains that are
on my servers. I wanted to verify the email address against valid ones to reduce
the amount of spam.
As an example "I" have apparently sent 1500 emails to my clients including
"myself"
each day for the last few days. Obviously this is not true.
So doing the spf thing should stop those buggers from using my and other
clients
names to send email and they will need to have a username and password to
validate
before a send is accepted!.
It would appear that the email accounts a very old. The emails that are
arriving have
5-10 valid domain but valid/invalid users in the To Field. The same for CC and
BCC.
They are the same addresses in each section.
On 18/11/2010 10:10 AM, Tonix (Antonio Nati) wrote:
Il 17/11/2010 23:41, Eric Shubert ha scritto:
On 11/17/2010 03:30 PM, Tonix (Antonio Nati) wrote:
Il 17/11/2010 15:56, Eric Shubert ha scritto:
That's a problem all right. I don't expect that using the submission
port would fix that either. The spfbehavior file should be separate
for the submission port to make that happen.
Ultimately, SPF should not be enforced for authenticated users. There
has been some talk about implementing SPF in spamdyke (I've been a
proponent of this). Perhaps we can nudge Sam and get it implemented
there. That would solve the problem.
Sorry I do not understand the problem: as far as I see SPF must be
disabled on submission port and for authenticated users, otherwise none
could give to authorized servers e-mails to relay.
Sources I'm using for qmail-smtpd check SPF only if RELAYCLIENT is not set.
Regards,
Tonino
I believe Tonino's correct. On second thought, I misunderstood the problem.
The problem is that mobile users submit email via the mobile smtp service, and don't come through QMT. Those servers
would somehow need to be included in the SPF record. It has nothing to do with QMT (which is what creates the problem,
somewhat ironically).
I feel when using SPF you have no other choice than relaying to ISP servers. Adding all possible SMTP servers of mobile
operator is out of our possibility :-).
Ciao!
Tonino
--
best wishes
Tony White
---------------------------------------------------------------------------------
Qmailtoaster is sponsored by Vickers Consulting Group
(www.vickersconsulting.com)
Vickers Consulting Group offers Qmailtoaster support and installations.
If you need professional help with your setup, contact them today!
---------------------------------------------------------------------------------
Please visit qmailtoaster.com for the latest news, updates, and packages.
To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com
For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com
