Am 30.03.2014 06:30, schrieb Peter: > On 03/30/2014 01:25 PM, li...@rhsoft.net wrote: >> >> while i agree that it is a bad idea to take headers into account > > I wouldn't say that, it depends on exactly what you're doing and how > much you're basing your decision to reject on that single piece of data.
"reject when sender doesn't appear in from: header" is a total decision >> as well as Barracuda networks started to do the same with their >> last firmware and so the spoofing protection kills *any* mailing >> list > > What barracuda did was different no > they used a policy list for deep inspection of Recipient headers > and rejected based on that which caused problems because a policy > list is only supposed to be checked against the client connecting > directly to your MX, not every IP in the Recipient list that was a change last year in context of reject on base "PTR ends with" which was reverted after i called them names, but a different topic with Firmware v6.0.2.002 they started to take the From-header into account if it comes to enabled spoofing protection while the mail window shows the correct envelope and reason "sender spoofed" and to make that perfect stupid also do that for subdomains even not listed on the device it appears there are new developers with no clue how email works luckily that thins are so plain wrong that it takes only a short time to realize them, however, http://dspam.nuclearelephant.com/ will be my friend after RHEL7 is released
