M>I had the same problem. It turns out that if the email is being M>relayed through trusted or internal hosts, SA will skip the M>SPF checks on the belief that it cannot trust that one of M>those hosts hasn't M>changed the envelope headers. I ended up opening an enhancement M>request to allow an option to get SA to run the SPF checks if M>the admin M>is sure that the envelope headers are not being altered. This will M>appear in 3.1, but there is a patch you can get if you want it M>earlier. See http://bugzilla.spamassassin.org/show_bug.cgi?id=4140
M>
I applied the patch last night, now every email from this list comes up with SPF_FAIL, some also come up with SPF_HELO_PASS, will remove the patch when I get back from work, since it doesn't seem to be working correctly.
Martin
Could you please forward a few complete messages that incorrectly get an SPF fail with the patch applied.
The patch has no effect on SPF_HELO tests.
Daryl
