On Tue, 26 Aug 2008 12:16:00 -0400 "Raymond Jette" <[EMAIL PROTECTED]> wrote: >Good afternoon, > >I am using Postfix with postfix-policyd-spf-python for SPF. This is >rejecting mail from the HELO verb. According to RFC 4008: > > > > The "HELO" identity derives from either the SMTP HELO or EHLO command > > (see [RFC2821]). These commands supply the SMTP client (sending > host) for the SMTP session. Note that requirements for the domain > presented in the EHLO or HELO command are not always clear to the > sending party, and SPF clients must be prepared for the "HELO" > identity to be malformed or an IP address literal. At the time of > this writing, many legitimate E-Mails are delivered with invalid HELO > domains. The policy server is designed with this in mind. Broken HELO names will not cause it to reject mail. If it is, it's a bug and I'd appreciate evidence in the form of logs so I can fix it.
>Is there a way to disable SPF checking in the HELO part of a message? Yes. >Also, is there a way to bypass spf for a given host or domain? Yes. See the man pages installed with the package for details. If you need more help, the spf-help mailing list is probably more appropriate. See http://www.openspf.org/Forums for information on how to subscribe. Scott K
