On Tue, 6 Jan 2015, Reindl Harald wrote:
Am 06.01.2015 um 02:27 schrieb John Hardin:
On Tue, 6 Jan 2015, Reindl Harald wrote:
> it's a matter of technical correctness
> no SPF on the envelope domain, no SPF
>
> * OK: SPF_PASS
> * OK: SPF_PASS,SPF_HELO_PASS
> * OK: SPF_NONE
> * WRONG: SPF_NONE,SPF_HELO_PASS
>
> one can argue about the severity but the correctness is out of question
Are you assuming that the MTA will always be in the same domain as the
envelope sender address when you say that?
no - why should i?
we host 600 domains on the same MTA
i only say there can not be any sort of SPF PASS if the sending domain don't
have any SPF record at all - it's just wrong
And if the MTA's domain, which is in a different domain than the envelope
sender, *does* have an SPF record, and the MTA is valid per that SPF
record?
Are you saying the SPF for the MTA/HELO domain should not be checked at
all if it is different than the envelope sender domain?
--
John Hardin KA7OHZ http://www.impsec.org/~jhardin/
jhar...@impsec.org FALaholic #11174 pgpk -a jhar...@impsec.org
key: 0xB8732E79 -- 2D8C 34F4 6411 F507 136C AF76 D822 E6E6 B873 2E79
-----------------------------------------------------------------------
An entitlement beneficiary is a person or special interest group
who didn't earn your money, but demands the right to take your
money because they *want* it. -- John McKay, _The Welfare State:
No Mercy for the Middle Class_
-----------------------------------------------------------------------
12 days until Benjamin Franklin's 309th Birthday
