Julian Underwood wrote: > I was curious how organizations typically score mail which comes from > their own domain(s). Obviously spammers will spoof the source domain > in hopes that you have whitelisted your domain or give "special > treatment" from mail originating from within your own org.
We publish an SPF record with some +ip4 ranges, some ?ip4 ranges, and -all. The +ip4 ranges are our known senders. The ?ip4 are for some stupid websites that have a "send this page to a friend" feature, and who don't change the envelope-sender. This allows members of our organization to use these sites to send links to each other. On our MX gateways, we check SPF and reject any that fall into -all. Roaming users connect via SMTP AUTH to a non-MX mail server. -- Matthew.van.Eerde (at) hbinc.com 805.964.4554 x902 Hispanic Business Inc./HireDiversity.com Software Engineer
