> How come. Unless you give a bonus to SPF pass, then there's no real > incentive for legit domains to use it (until people start > rejecting SPF > fails... ). The idea that spammers can pass SPF doesn't bother me at > all, since I know that it will make the blacklists that much more > effective. You just need to make sure that you don't give more of a > bonus for SPF-pass than the penalty for being on a RBL.
I'd say the point of spamassassin is to detect spam, I'm not sure an SPF pass does anything to indicate that an email is not spam, but an SPF fail would seem to be an indicator that it probably is? SPF was, AIUI never touted as a means to cut down on spam, just on forgeries? regards, Paul
