On 05.10.11 11:01, Julian Yap wrote:
I've noticed some trojans with addresses from usps.com slip through.
Does anyone blacklist based on SPF?
According to SPF definition, all mail that fails SPF check, is forged
and therefore it should be rejected (in case of FAIL result), or very
carefully cheked.
In reality, there are problems related to
- mail forwarders who can't tag the mail as forwarded (and thus, they
in fact fake the envelope sender)
- misconfigured SPF and misconfigured mailers of companies who do
not understand the SPF principle and outsource the mailers outside
usually, people do what you want either by defining their own rule,
but as it turns out, having something like SPF blacklist would be a
good idea.
(and possibly list of forwarders who do not rewrite mail from)
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
LSD will make your ECS screen display 16.7 million colors
