On 14/06/13 07:08, Neil Schwartzman wrote: > Sure is. Also DMARCed and SPFed too. > > ;; QUESTION SECTION: > ;paypal.com <http://paypal.com>.INTXT > > ;; ANSWER SECTION: > paypal.com <http://paypal.com>.7INTXT"v=spf1 > include:pp._spf.paypal.com <http://spf.paypal.com> > include:3rdparty._spf.paypal.com <http://spf.paypal.com> > include:3rdparty1._spf.paypal.com <http://spf.paypal.com> > include:3rdparty2._spf.paypal.com <http://spf.paypal.com> > include:c._spf.ebay.com <http://spf.ebay.com> ~all" >
Yeah but notice "~all" is not "-all". ie they are saying that legitimate Paypal email comes from those specific sources - except when it doesn't I don't understand why "~all" exists at all. It's like a "checkbox" security feature: "oh yeah, our domain uses SPF!" -- Cheers Jason Haar Information Security Manager, Trimble Navigation Ltd. Phone: +1 408 481 8171 PGP Fingerprint: 7A2E 0407 C9A6 CAF6 2B9F 8422 C063 5EBB FE1D 66D1
