Re: SPF rules and my domain

Thu, 10 Dec 2015 23:57:07 -0800 

>  My response was based on how you worded your question, which has been
>  removed from the thread now:
> > > > >  Please help me understand why SPF_FAIL would not be triggered
> > > > > > > > >  when an incoming email using my domain is received by a server 
> >
> > > > > > >  that is not in my SPF record.



On Thu, 10 Dec 2015, Matus UHLAR - fantomas wrote:

The SPF fail SHOULD be triggered in that case.



On Thu, Dec 10, 2015 at 10:28 AM, John Hardin <jhar...@impsec.org> wrote:

Matus, I think you misread the question. Again: whether or not the
*receiving* MTA is mentioned in the SPF record is immaterial.

I don't know whether Alex (at the time) misunderstood SPF and asked a
question based on that misunderstanding, which I tried to clarify, or he
simply mistyped "by" when he should have typed "from".


On 10.12.15 22:54, Alex wrote:

Yes, I have no idea why I would have written "by". I meant "from". Too
many hours of SPF at once, I suppose.


I think I've misread the message in the correct way it was meant :-)


Is it possible to test spamassassin SPF rules after a message is
received? I've been unsuccessful:

Dec 10 21:15:02.318 [2402] dbg: spf: relayed through one or more
trusted relays, cannot use header-based Envelope-From, skipping


I think you need to fake header added by your last trusted relay to include
envelope from. Then, SA could accept that. But you need to use correct
format


I don't understand why a message from tripadvisor.com would have
SPF_FAIL, and as part of trying to understand how SPF works, I'd like
to figure out what's happening.

Would someone be able to take a look at this message and figure out
why mail from tripadvisor.com fails SPF?

http://pastebin.com/36hzGcTs


the envelope sender seems to be
bounce-15_html-74319930-51788793-10834732...@bounce.e.tripadvisor.com

bounce.e.tripadvisor.com seems to have no SPF record, so I also don't
understand why SPF tests should hit at all, maybe SPF HELO tests...

--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
Emacs is a complicated operating system without good text editor.


























					Reply via email to