On Sun, 30 Apr 2017, Alex wrote:
process their email? Or perhaps this user is using outlook to send
their hotmail mail? If so, I believe the FORGED_HOTMAIL_RCVD2 rule is
not considering this possibility.
On 04/30/2017 10:48 PM, John Hardin wrote:
That's entirely possible. I'm pretty sure I've seen messages purporting
to be from a hotmail user that were processed by outlook.com. I'll check
my corpora and see if I can confirm that.
On 01.05.17 06:46, Axb wrote:
If you check hotmail's SPF records you'll see that they've added a a
bunch of include:spfX.protection.outlook.com entries.
I can confirm they're routing hotmail/live/etc mail thru these ranges.
and the "bunch" means that the number of SPF records to process crosses sane
limits of 10 lookups whenever you include it in other domain's SPF
records...
which means, they should clean it up otherwise their SPF record is pretty
useless (if it's not another Micro$oft attempt to make SPF useless)
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
"Two words: Windows survives." - Craig Mundie, Microsoft senior strategist
"So does syphillis. Good thing we have penicillin." - Matthew Alton
