> -----Original Message-----
> From: Rene Caspari [mailto:[EMAIL PROTECTED]
> Sent: dinsdag 21 november 2006 12:09
> To: users@spamassassin.apache.org
> Subject: SPF and SMTP AUTH
>
>
> I have a little problem with SPF:
>
> For domain.tld there is a SPF record, which says that
> mail.domain.tld is allowed to sending mails from [EMAIL PROTECTED]
> If I use mail.domain.tld with a dialin account by SMTP AUTH,
> spamassassin says SPF_SOFTFAIL because initially the mail was
> sent by the dialin account and not mail.domain.tld.
>
> How can I configure spamassassin to do not recognize the
> dialin account as a mailserver?
The better route, really, is to configure your MTA, mail.domain.tld, to
set "pass" for trusted mechanism you have in place (like SASL). Your MTA
would then generate a header like this:
Received-SPF: pass (mail.domain.tld: 1.2.3.4
is authenticated by a trusted mechanism
In your current setup, it seems, you basically use "softfail" so as not
have to deal with rejects from (authenticated) dynamic relays; but
"softfail" was not really meant for that purpose, of course.
- Mark
