Alex:
I've set up postfix to use policyd-spf using python-policyd-spf and
have some questions. Hopefully this isn't off-topic, as my search
returns results from only many years ago. Is this still the best SPF
policy service for postfix integration on Linux?
You can verify SPF using a policy service or a milter. For example, in
Debian both postfix-policyd-spf-python and pyspf-milter are available
(produced from the same source package, spf-engine). You can find other
milters online, too.
smtpd_recipient_restrictions =
...
check_sender_access pcre:$config_directory/sender_checks.pcre,
check_policy_service unix:private/policy-spf,
I’m curious, why check SPF in *recipient* restrictions? SPF is about the
sender, isn’t it? The resulting reply text ‘<complia...@mydomain.com>:
Recipient address rejected’ is misleading.
