I'm having a problem with SPF soft fail detection for a particular domain
that I cannot explain. Emails are being rejected for the domain because
emails are being hit with the SPF_FAIL rule, but according to the SPF
record, they should be hit with the SPF_SOFTFAIL rule.
The domain in question
Michael Scheidell michael.scheid...@secnap.com wrote on 08/23/2010
11:59:06 AM:
you will need to provide more information.
post ALL the headers, and state which one is the last untrusted received
header.
Here is what I see in the Exim reject log. I'm not sure quite what you
mean by
Benny Pedersen m...@junc.org wrote on 08/23/2010 02:45:07 PM:
The domain in question is nawilliams.com. This is the SPF record:
v=spf1 mx ptr ~all
ptr is unsafe to use in spf
~all means domain owner dont know what thay are doing
I figured as much. What I don't understand is why
Matus UHLAR - fantomas uh...@fantomas.sk wrote on 08/23/2010 04:50:39
PM:
Looking at it more deeply, nawilliams.com has three nameservers (but
only 2
delegations from .com), where two return -all and one returns ~all:
% dig spf nawilliams.com @beulah.zootsplace.com.
nawilliams.com.