On 2021-02-07 18:08, Curtis Maurand wrote:
I would suggest giving higher preference to SPF. You can even reject if SPF fails.
sure spf is the network policy, but i do not need network policy to reject local domains in port 25
world would be perfect if spf was used more even on postfix maillist, but it think its removed to be neutral, with is fine aswell
I just went through this with a client because we bounced a message back because they were set up on outlook.com but, for whatever reason, they were trying to send via google. SPF said nay, nay the policy says all incoming mail from x.tld should come from spf.protection.outlook.com not the ip address that google owns from which the message originated.
i do not care of outlook that uses expired data from rbls where there was owner changes, that domains at same time say thay blocking spam, but rbl blocking is not spam, its only policy where there is no spam content to show proof with
