I think you have no other choise, except forcing your customers to use
your relay servers.
Set up a dedicated IP where you accept only authenticated users (i.e.
relay.ycs.com.au), and use the submission port (587) for accepting their
emails in case mobile companies block sending to port 25.
Regards,
Tonino
Il 18/11/2010 09:30, Tony White ha scritto:
Hello,
Yes I am receiving emails that SPF should not allow.
BUT and it is a big BUT! I have clients that have mobile
devices that use their mobile device ISP smtp server to
send mail.
If I make SPF only allow MY smtp servers then these folks
cannot send mail from their mobile devices!
No, none of my accounts are sending out spam emails.
All emails are from smtp servers outside of my control.
Sorry if I am wrong to do this here but I thought I might include one
as an example...
NB The ONLY valid email address is mine t...@ycs.com.au, all the others
are rubbish!
---------- ACTUAL EXAMPLE RECEIVED ------------
From - Thu Nov 18 12:36:23 2010
X-Account-Key: account11
X-UIDL: 1290043761.13702.indialau.bigpuddle.net,S=2602
X-Mozilla-Status: 0011
X-Mozilla-Status2: 00000000
X-Mozilla-Keys:
Return-Path:<bi...@gpdv.com.au>
Delivered-To: t...@ycs.com.au
Received: (qmail 13700 invoked by uid 89); 18 Nov 2010 01:29:21 -0000
Received: from unknown (HELO ?222.119.250.144?) (222.119.250.144)
by indialau.bigpuddle.net with SMTP; 18 Nov 2010 01:29:20 -0000
Received-SPF: none (indialau.bigpuddle.net: domain at gpdv.com.au does
not designate permitted sender hosts)
Received: from 222.119.250.144(helo=vkddebf.pnpxyhcbajz.info)
by with esmtpa (Exim 4.69)
(envelope-from )
id 1MM3A9-7030gu-RU
for t...@ycs.com.au; Thu, 18 Nov 2010 10:29:20 +0900
To:<t...@ycs.com.au>,
<to...@ycs.com.au>,
<stee...@ycs.com.au>,
<accplusk...@ycs.com.au>
Cc:<accpluss...@ycs.com.au>,
<accpluse...@ycs.com.au>,
<accplush...@ycs.com.au>,
<accplusq...@ycs.com.au>,
<accplusu...@ycs.com.au>,
<accplusw...@ycs.com.au>,
<accplust...@ycs.com.au>,
<accplusr...@ycs.com.au>,
<accplusf...@ycs.com.au>
Subject: Re: CV
From:<t...@ycs.com.au>,
<to...@ycs.com.au>,
<stee...@ycs.com.au>,
<accplusk...@ycs.com.au>
Cc:<accpluss...@ycs.com.au>,
<accpluse...@ycs.com.au>,
<accplush...@ycs.com.au>,
<accplusq...@ycs.com.au>,
<accplusu...@ycs.com.au>,
<accplusw...@ycs.com.au>,
<accplust...@ycs.com.au>,
<accplusr...@ycs.com.au>,
<accplusf...@ycs.com.au>
MIME-Version: 1.0
Importance: High
Content-Type: text/html
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
<HTML><HEAD>
<META http-equiv=Content-Type content="text/html; charset=iso-8859-2">
</HEAD>
<BODY>A foreign owned company is looking for Online Sales
Administrator to assist in the day to day running of our outlet
online.<br>
<br>
<b>DUTIES INCLUDE:</b><br>
Administrating day-to-day financial responsibilities for our clients<br>
data input<br>
capable to fast reply to all emails coming from your personal HR<br>
Manager<br>
Preparing brief summary reports, and weekly financial reports<br>
<br>
<b>SKILLS REQUIRED:</b><br>
1. Keyboard Typing.<br>
2. basic Miscrosoft Office skills.<br>
3. constantly available on the phone during the daytime<br>
<br>
<b>PREVIOUS EXPERIENCE OR TRAINING IN THE FOLLOWING WOULD BE AN
ADVANTAGE</b>:<br>
Office administration<br>
Call handling<br>
Customer service<br>
Typing and correspondence<br>
Email correspondence<br>
Research including web based research<br>
Database management<br>
<br>
<b>HOURS:</b><br>
Mon to Fri 9am-3pm - Weekends as required<br>
Rate of pay by negotiation, minimum guaranteed GBP 1,500 PER MONTH.<br>
<br>
<b>Location:</b> AUSTRALIA ONLY<br>
<b>AGE:</b> at least 18 year old, or older<br>
<br>
To apply please email<b>of...@australia-resume.com</b></BODY></HTML>
---------- ACTUAL EXAMPLE RECEIVED ------------
On 18/11/2010 7:05 PM, Tonix (Antonio Nati) wrote:
Sorry, I don't understand problem, again.
Are you receiving e-mails which SPF should not allow?
Any of your accounts is sending out spam emails?
Tonino
Il 18/11/2010 07:05, Tony White ha scritto:
Hi folks,
Will this cure my issue, at least for now...
1. Have all my users use the QMT servers via SMTP-AUTH.
2. Set spf records to only allow my ip addresses to send mail for
these domains.
The original problem was/is...
email being sent to my servers using valid/invalid accounts for
domains that are
on my servers. I wanted to verify the email address against valid
ones to reduce
the amount of spam.
As an example "I" have apparently sent 1500 emails to my clients
including "myself"
each day for the last few days. Obviously this is not true.
So doing the spf thing should stop those buggers from using my
and other clients
names to send email and they will need to have a username and
password to validate
before a send is accepted!.
It would appear that the email accounts a very old. The emails
that are arriving have
5-10 valid domain but valid/invalid users in the To Field. The same
for CC and BCC.
They are the same addresses in each section.
On 18/11/2010 10:10 AM, Tonix (Antonio Nati) wrote:
Il 17/11/2010 23:41, Eric Shubert ha scritto:
On 11/17/2010 03:30 PM, Tonix (Antonio Nati) wrote:
Il 17/11/2010 15:56, Eric Shubert ha scritto:
That's a problem all right. I don't expect that using the
submission
port would fix that either. The spfbehavior file should be separate
for the submission port to make that happen.
Ultimately, SPF should not be enforced for authenticated users.
There
has been some talk about implementing SPF in spamdyke (I've been a
proponent of this). Perhaps we can nudge Sam and get it implemented
there. That would solve the problem.
Sorry I do not understand the problem: as far as I see SPF must be
disabled on submission port and for authenticated users,
otherwise none
could give to authorized servers e-mails to relay.
Sources I'm using for qmail-smtpd check SPF only if RELAYCLIENT
is not set.
Regards,
Tonino
I believe Tonino's correct. On second thought, I misunderstood the
problem.
The problem is that mobile users submit email via the mobile smtp
service, and don't come through QMT. Those servers would somehow
need to be included in the SPF record. It has nothing to do with
QMT (which is what creates the problem, somewhat ironically).
I feel when using SPF you have no other choice than relaying to ISP
servers. Adding all possible SMTP servers of mobile operator is out
of our possibility :-).
Ciao!
Tonino
--
------------------------------------------------------------
in...@zioni Interazioni di Antonio Nati
http://www.interazioni.it to...@interazioni.it
------------------------------------------------------------
---------------------------------------------------------------------------------
Qmailtoaster is sponsored by Vickers Consulting Group
(www.vickersconsulting.com)
Vickers Consulting Group offers Qmailtoaster support and installations.
If you need professional help with your setup, contact them today!
---------------------------------------------------------------------------------
Please visit qmailtoaster.com for the latest news, updates, and packages.
To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com
For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com