On Sun, 2010-07-04 at 23:39 -0700, junkyardma...@verizon.net wrote: > Very aware spammers can create their own domains and and SPF records. They > can do essentially the same thing with any anti spam measures. And I have > see a number of them do just that, an SPF record of entire IPv4 address > space (0.0.0.0/0). But guess what, everyone of them has been in an RHSBL. > The fact it prevents them from using just any ol domain instead of their own > makes it extermely quick and easy for them to get detected and added into > the RHSBL's. > > Requiring an SPF record to publish a domains authorized MTA's is very > effective. >
Having a cover-all SPF record doesnot mean the domain is spamming. Even a top email standards aware company like messagelabs has a stupid SPF record dig messagelabs.com TXT +short "v=spf1 +all" Nevertheless SPF is an excellent tool for whitelisting with SA whitelist_auth feature. If postfix.org also users SPF I could use it for all my servers here.
