Jeferson Pessoa Santana wrote: > I'm a little confuse now. When I Get SPF_FAIL?
You'll get a FAIL when the sending domain has a SPF record, but the sending machine is not listed in the SPF record, AND the "all" clause is set to fail, or softfail. SPF failure isn't by default. It's by declaration. For example, my domain has a SPF record. If you were to send mail and forge my email address you'd generate a SPF failure. Here's my record for evi-inc.com: v=spf1 mx ptr ip4:162.84.101.0/24 ip4:208.39.141.80/28 ip4:208.39.140.174/32 -all Which states that anyone sending mail with an envelope return of evi-inc.com must be in one of those 3 IP blocks, or match the MX of the domain, or have a PTR record matching evi-inc.com. Anything else is forgery, and is declared to be failure. > I think that when the > domain don't have a SPF record, spamassassin scores the message with FAIL. It does not. You should get no SPF rules at all for a no-spf-record domain.
