On 7/14/23 20:30, Grant Taylor via users wrote:
On 7/14/23 6:06 PM, Thomas Cameron wrote:
I'm trying to figure out how to block this stuff. Something like "if
it appears to come from me, but it's not actually coming from my
email server," block it.
SPF with hard fail in your own domain /and/ filtering that respects
SPF hard fail will almost certainly stop this like a switch.
I'd love to do this, but see below. I get TONS of warnings every time I
send email to lists (even this list) that make me hesitant to do hard fails.
On 7/14/23 7:28 PM, Thomas Cameron wrote:
But because I use several mailing lists, I do not have a hard fail
set up. I get SO many notices when I send email to lists that I'm
really worried about defining hard failures/rejections.
I consider that to be a failure on the mailing list's part.
Mailing lists can't successfully operate like they did 25+ years ago.
I do, as well, but mailing lists outside of my sphere of influence. I
can't very well dictate to mailing list admins that they change the way
they do things. Even the earlier email I sent to this list generated a
bunch of warning messages. One of many:
<feedback>
<report_metadata>
<org_name>nimitz.pl</org_name>
<email>postmas...@nimitz.pl</email>
<report_id>camerontech.com-1689379200-1689465...@nimitz.pl</report_id>
<date_range>
<begin>1689379200</begin>
<end>1689465599</end>
</date_range>
</report_metadata>
<policy_published>
<domain>camerontech.com</domain>
<adkim>r</adkim>
<aspf>r</aspf>
<p>quarantine</p>
<sp>quarantine</sp>
<pct>100</pct>
</policy_published>
<record>
<row>
<source_ip>95.216.194.37</source_ip>
<count>1</count>
<policy_evaluated>
<disposition>none</disposition>
<dkim>pass</dkim>
<spf>fail</spf>
</policy_evaluated>
</row>
<identifiers>
<header_from>camerontech.com</header_from>
</identifiers>
<auth_results>
<spf>
<domain>spamassassin.apache.org</domain>
<result>pass</result>
</spf>
<dkim>
<domain>camerontech.com</domain>
<result>pass</result>
</dkim>
</auth_results>
</record>
</feedback>
So it seems like my emails are being quarantined when I send them to
mailing lists, even this one.
But I'll play around with what you suggested.
+10 for SPF.
+1 for encouraging mailing list operators to get with the times.
You can also do as Robert suggests and use a separate (sub)domain for
mailing lists with different SPF settings thereon.
It's not so much mailing list operators I'm worried about. It's that,
when my email goes through a listserv mailing list, if I define hard
failures, I am worried that my email isn't going to get to list members.
That's not the mailing list admin, it's the admins of the list members'
mail servers. If I'm not understanding something, please feel free to
clarify.
Thomas
