Matus UHLAR - fantomas <[EMAIL PROTECTED]> writes: > I mean, is SPF usefull for a domain, when some hosts (even > not trusted) can send you mail from that domain, without > authentication?
Why not? Senders from this domain are allowed from a certain IP only. Everything else should fire SPF_FAIL. But gain of SPF is not large enough to establish infrastructure changes like private DNS views or SMTP auth. >> For now, I added the whole IANA blackhole ranges to my SPF >> record... The openspf documentation uses this in an example >> too so it should be ok. > > So anyone with private range can now spam using your domain on > its network, without SPF to fire? Why? Because it seems to be impossible to configure spamassassin so that it stops SPF_FAIL hits from the internal network? Enrico
