On 20 May 2016, at 13:03, Alex wrote:
Hi,
Is it necessary to use the Envelope-From address when whitelisting
with whitelist_from_spf?
SPF is specified to apply to the domain in the SMTP envelope sender and
secondarily, the HELO domain.
It is not rational to expect that a SPF record for the domain of a From
header which differs from the domain of the envelope sender address to
be accurate for that message.
The docs are unclear as to whether I can just
use the regular From address, which would be easier for me.
Apparently using the regular From address appears to not be
considered, however. Perhaps I should just use DKIM.
If you want to authenticate From headers, DKIM is the most useful
approach.
Note that because From headers are not intrinsically related to the
transport of mail, there must be something like DKIM added on to bind
them.
