Hello Doug, DS> I have a question. Is there some sort of plugin or something that DS> I can use like a spamassassin test to check for spf records and DS> then adjust the spamassassin score accordingly? Or is this a DS> simple allow/deny type thing for now?
As far as I know, Spamassassin has had SPF-checking as an option for several months, but I don't use it, so I can't confirm it. DS> I'd rather start with adjusting spamassassing scores for now than DS> completely denying messages right away... SPF implementations respond basically 3 ways, "SPF matches", meaning the domain publishes SPF records and the server matches the published records, "SPF doesn't match", meaning the domain publishes SPF and this message failed the check, and "Don't Know", meaning (usually) that no SPF records are published, so the library can't check it. In my opinion, you might SLIGHTLY increase a spam score for "Don't Know", but any "Doesn't match" report the score should peg the scale, and be rejected outright - the domain's owner has said it's not legitimate. (This is what gets remailers into trouble, and why the "proper" way to do the remailer is to change the envelope sender to match the domain of the remailer.) -- Jeff Brenton Vice President, Engineered Software Products, Inc http://espi.com Questionable web page: http://dididahdahdidit.com Liberalism grants you the freedom to advocate any idea*. * Please see http://www.dididahdahdidit.com/except.php for a current list of exceptions
