On Thu, 2024-06-27 at 14:50 -0400, Ted Smith via mailop wrote: > That conbined with the hard fail indicated could account for the > rejection of the message, except that I don't understand why the SPF > check would be done for the helo hostname of the forwarding server, > and why that result would take precidence over the SPF result for the > actual sender domain. > > Since SPF is supposed to verify that the senders, why would postfix- > policyd-spf-python be looking up the SPF record for the helo hostname > of the forwarding mailserver and determining what to do based on > that? If my explanation is correct there is clearly something I'm > missing about SPF enforcement, or is there some other possible > explanation I'm unaware of?
The usual case where the HELO becomes involved in SPF checks would be when the mail is a bounce, i.e. has a NULL envelope sender. Regards, Adam _______________________________________________ mailop mailing list mailop@mailop.org https://list.mailop.org/listinfo/mailop
