Am 11.12.2015 um 17:11 schrieb Alex:
On Fri, Dec 11, 2015 at 10:33 AM, Matus UHLAR - fantomas
wrote:
On 10.12.15 22:54, Alex wrote:
I don't understand why a message from tripadvisor.com would have
SPF_FAIL, and as part of trying to understand how SPF works, I'd like
to figure out what's happ
Hi,
On Fri, Dec 11, 2015 at 10:33 AM, Matus UHLAR - fantomas
wrote:
>> On 10.12.15 22:54, Alex wrote:
>>>
>>> I don't understand why a message from tripadvisor.com would have
>>> SPF_FAIL, and as part of trying to understand how SPF works, I'd like
>>> to figure out what's happening.
>>>
>>> Woul
On 10.12.15 22:54, Alex wrote:
I don't understand why a message from tripadvisor.com would have
SPF_FAIL, and as part of trying to understand how SPF works, I'd like
to figure out what's happening.
Would someone be able to take a look at this message and figure out
why mail from tripadvisor.com
Am 11.12.2015 um 08:56 schrieb Matus UHLAR - fantomas:
I don't understand why a message from tripadvisor.com would have
SPF_FAIL, and as part of trying to understand how SPF works, I'd like
to figure out what's happening.
Would someone be able to take a look at this message and figure out
why
> My response was based on how you worded your question, which has been
> removed from the thread now:
> > > > > Please help me understand why SPF_FAIL would not be triggered
> > > > > > > > > when an incoming email using my domain is received by a server
> >
> > > > > > > that is not in my
Hi,
On Thu, Dec 10, 2015 at 10:28 AM, John Hardin wrote:
> On Thu, 10 Dec 2015, Matus UHLAR - fantomas wrote:
>
>>> > My response was based on how you worded your question, which has been
>>> > removed from the thread now:
>>> > > > > > Please help me understand why SPF_FAIL would not be trigg
On December 10, 2015 3:49:56 PM Alex wrote:
whitelist_from_spf: *@example.tld (your domain)
header Return-Path =~ example.tld
That's great. I'll investigate.
or blacklist_from *@* with whitelist_auth *@* to hate all equal :)
Benny Pedersen wrote:
> Alex skrev den 2015-12-10 03:42:
>
>> If I wanted to use SPF in spamassassin to block spoofing attempts
>> against my domain, how would I do that?
>> Can I create a meta that combines SPF_FAIL with the From header for my
>> domain to do this?
>
> setup pypolicyd-spf is not
On Dec 10, 2015 at 16:13 +0100, Reindl Harald wrote:
=>Am 10.12.2015 um 15:56 schrieb Alex:
=>> I thought it was related to the sending domain, which it was, but I
=>> later learned one of the includes in our domain was also apparently
=>> expanded, and caused our SPF record to temporarily exceed
On Thu, 10 Dec 2015, Matus UHLAR - fantomas wrote:
> My response was based on how you worded your question, which has been
> removed from the thread now:
>
> > > > Please help me understand why SPF_FAIL would not be triggered
> > > > when an incoming email using my domain is received by a
Am 10.12.2015 um 15:56 schrieb Alex:
Please help me understand why SPF_FAIL would not be triggered when >
> > an incoming email using my domain is received by a server that is >
> > not in
> > my SPF record.
The SPF fail SHOULD be triggered in that case. But in your first mail you
hav
Am 10.12.2015 um 15:47 schrieb Alex:
data in spf must be with all mynetworks in postfix except all non routeble
ips such as rfc1918 in the spf for mydestination and virtual domains
Doesn't that introduce a trust issue with include: for example? We're
including constant-contact, salesforce, et
Am 10.12.2015 um 15:43 schrieb Alex:
Hi,
If I wanted to use SPF in spamassassin to block spoofing attempts
against my domain, how would I do that?
Simply put all approved mail servers that you allow to send email with an
envelope-from domain of your domain in your SPF record and it won't
ma
Hi,
> > Please help me understand why SPF_FAIL would not be triggered when >
> > >
> > an incoming email using my domain is received by a server that is >
> > not in
> > my SPF record.
>
> The SPF fail SHOULD be triggered in that case. But in your first mail you
> have mentioned T_SPF_PERMERROR
Hi,
>> If I wanted to use SPF in spamassassin to block spoofing attempts
>> against my domain, how would I do that?
>>
>> Can I create a meta that combines SPF_FAIL with the From header for my
>> domain to do this?
>
> This all sounds like:
>
> I (Alex) want to use SPF for incoming email, and scor
Hi,
>> If I wanted to use SPF in spamassassin to block spoofing attempts
>> against my domain, how would I do that?
>> Can I create a meta that combines SPF_FAIL with the From header for my
>> domain to do this?
>
> setup pypolicyd-spf is not that hard is it ?
I mentioned previously that there we
Hi,
>>If I wanted to use SPF in spamassassin to block spoofing attempts
>>against my domain, how would I do that?
>
> Simply put all approved mail servers that you allow to send email with an
> envelope-from domain of your domain in your SPF record and it won't
> matter what the receiving server i
Yes, understood. This was always about my own MTA receiving a message
appearing to be "FROM" my own domain, and my own SPF record would be
used to check the IP of the remote system to determine if it was
permitted. I may have made that especially clear at one point.
Does this make sense now? I'm
Am 10.12.2015 um 03:42 schrieb Alex:
If I wanted to use SPF in spamassassin to block spoofing attempts
against my domain, how would I do that?
Can I create a meta that combines SPF_FAIL with the From header for my
domain to do this?
SPF *is not* about the From-Header
signature.asc
Descrip
On 10-12-15 03:42, Alex wrote:
> Hi,
>
>>> Yes, understood. This was always about my own MTA receiving a message
>>> appearing to be "FROM" my own domain, and my own SPF record would be
>>> used to check the IP of the remote system to determine if it was
>>> permitted. I may have made that espec
Alex skrev den 2015-12-10 03:42:
If I wanted to use SPF in spamassassin to block spoofing attempts
against my domain, how would I do that?
Can I create a meta that combines SPF_FAIL with the From header for my
domain to do this?
setup pypolicyd-spf is not that hard is it ?
when done, you just
>Spamassassin is just going to record a generic SPF_FAIL, regardless of
>whether it's my SPF record or an email from some other domain.
>If I wanted to use SPF in spamassassin to block spoofing attempts
>against my domain, how would I do that?
Simply put all approved mail servers that you allow t
Hi,
>> Yes, understood. This was always about my own MTA receiving a message
>> appearing to be "FROM" my own domain, and my own SPF record would be
>> used to check the IP of the remote system to determine if it was
>> permitted. I may have made that especially clear at one point.
>>
>> Does this
On Wed, 9 Dec 2015, Alex wrote:
I think you mean, *FROM* a server that is not in your SPF record.
SPF says nothing about the *recipient* MTA.
Unless that recipient MTA is my own, correct?
No. The recipient *does not matter*. SPF is vetting the *sending* MTA.
The SPF record contains a list
Hi,
>>> I think you mean, *FROM* a server that is not in your SPF record.
>>>
>>> SPF says nothing about the *recipient* MTA.
>>
>>
>> Unless that recipient MTA is my own, correct?
>
> No. The recipient *does not matter*. SPF is vetting the *sending* MTA.
>
>> The SPF record contains a list of ser
Am 09.12.2015 um 18:25 schrieb Alex:
Please help me understand why SPF_FAIL would not be triggered when an
incoming email using my domain is received by a server that is not in
my SPF record.
I think you mean, *FROM* a server that is not in your SPF record.
SPF says nothing about the *recipi
On Wed, 9 Dec 2015, Alex wrote:
Please help me understand why SPF_FAIL would not be triggered when an
incoming email using my domain is received by a server that is not in
my SPF record.
I think you mean, *FROM* a server that is not in your SPF record.
SPF says nothing about the *recipient* M
>> Please help me understand why SPF_FAIL would not be triggered when an
>> incoming email using my domain is received by a server that is not in
>> my SPF record.
>
> I think you mean, *FROM* a server that is not in your SPF record.
>
> SPF says nothing about the *recipient* MTA.
Unless that reci
On Wed, 9 Dec 2015, Alex wrote:
Please help me understand why SPF_FAIL would not be triggered when an
incoming email using my domain is received by a server that is not in
my SPF record.
I think you mean, *FROM* a server that is not in your SPF record.
SPF says nothing about the *recipient* M
Am 09.12.2015 um 17:30 schrieb Alex:
Hi,
My main problem is understanding how to build a rule to block spoofing
attempts against my own domain? Do I need to build a meta that
combines envelope FROM with SPF_FAIL?
first: spoofing protection is *only* about envelope and not about the
visible
Hi,
>> My main problem is understanding how to build a rule to block spoofing
>> attempts against my own domain? Do I need to build a meta that
>> combines envelope FROM with SPF_FAIL?
>
> first: spoofing protection is *only* about envelope and not about the
> visible From-header (spoofing protect
On Wed, 2015-12-09 at 09:44 -0500, Alex wrote:
> My main problem is understanding how to build a rule to block
> spoofing attempts against my own domain? Do I need to build a meta
> that combines envelope FROM with SPF_FAIL?
>
Don't forget that SPF fails and errors will always be related to the
*
Am 09.12.2015 um 15:44 schrieb Alex:
T_SPF_PERMERROR says pretty clear that you made something wrong
why do people not *verify* DNS changes? seen the same from a
lot of large companies
http://www.kitterman.com/spf/validate.html
+1 for the Kitterman checking tool - still my first stop for SPF
Hi,
>> T_SPF_PERMERROR says pretty clear that you made something wrong
>> why do people not *verify* DNS changes? seen the same from a
>> lot of large companies
>>
>> http://www.kitterman.com/spf/validate.html
>>
> +1 for the Kitterman checking tool - still my first stop for SPF
> checking.
>
> I
On Wed, 2015-12-09 at 08:11 +0100, Reindl Harald wrote:
>
> T_SPF_PERMERROR says pretty clear that you made something wrong
> why do people not *verify* DNS changes? seen the same from a
> lot of large companies
>
> http://www.kitterman.com/spf/validate.html
>
+1 for the Kitterman checking tool
Am 09.12.2015 um 05:03 schrieb Alex:
I'm having some problems with SPF and hoped someone could help me to
understand. I've just set up SPF for a domain and now trying to make
sure that spamassassin for that domain is properly blocking/scoring
mail attempting to spoof the envelope sender.
I'm s
Hi,
I'm having some problems with SPF and hoped someone could help me to
understand. I've just set up SPF for a domain and now trying to make
sure that spamassassin for that domain is properly blocking/scoring
mail attempting to spoof the envelope sender.
I'm seeing a number of emails hit T_SPF_P
37 matches
Mail list logo
