http://bugzilla.spamassassin.org/show_bug.cgi?id=3615
------- Additional Comments From [EMAIL PROTECTED] 2004-07-19 03:35 ------- Subject: Re: SPF_(PASS|FAIL|SOFTFAIL) rule doesn't hit when it should On Sunday 18 July 2004 21:52, you wrote: > There's not really a good way to detect this reliably; it could also > have been gatewayed into a mailing list which would then resend > the msg with a new envelope sender. Resending the message with a new envelope sender is just what you need, because in that case you can check the SPF record of the mailinglist domain. Otherwise it is almost guaranteed to fail the check (if the original senders domain has an SPF record), since the mailinglist server is probably not in the list of authorized clients for the senders domain. Mailinglists *must* resend contributions (instead of forwarding them), likewise fetchmail *must* rewrite the Return-Path. Checking SPF records will fail miserably if you don't do that. > The workaround is to get the trusted relays to record env-sender in the > Received header as per > http://wiki.apache.org/spamassassin/EnvelopeSenderInReceived . I don't think this is required. With SPF you're only able to check reliably if the last untrusted relay before your own trusted relays is legitimately sending the message. All information that was added by untrusted relays should be discarded anyway (since it can be faked). Best regards, Arjen ------- You are receiving this mail because: ------- You are the assignee for the bug, or are watching the assignee.
