On Fri, Jan 24, 2020 at 10:59:53AM +0000, Gregory Heytings via mailop wrote: [..] > That's your opinion. My opinion is that "-all" is almost never a good > idea, and is certainly not a good idea for a small personal server. It > breaks forwards and mailing lists. "?all" does not mean "we're not sure > what we're doing yet" (that would be "+all"), it means "if none of the > previous policy rules matched, do not interpret this negatively". I > agree that "~all" is sometimes better, but again it tends to break > forwards and mailing lists.
The worst is using +all in any case just to try to prevent forwarding and mainlinglist troubles. In such case it would be better not to use SPF at all. This breaks the receipt on sites where +all includes the recipients IP range which is allowed to send for a foreign domain, which might be regarded as hostile. In other words, the recpients IP could be a sending source for a foreign domain - such a takeover of one range for a domain not owned by you is not exceptable, at least for me. This is also regarded as bad acting. Johann _______________________________________________ mailop mailing list mailop@mailop.org https://chilli.nosignal.org/cgi-bin/mailman/listinfo/mailop
