On 04/30/2017 10:48 PM, John Hardin wrote:
On Sun, 30 Apr 2017, Alex wrote:
Hi, is it possible hotmail is now using outlook.com to route and
process their email? Or perhaps this user is using outlook to send
their hotmail mail? If so, I believe the FORGED_HOTMAIL_RCVD2 rule is
not considering this possibility.
That's entirely possible. I'm pretty sure I've seen messages purporting
to be from a hotmail user that were processed by outlook.com. I'll check
my corpora and see if I can confirm that.
If you check hotmail's SPF records you'll see that they've added a a
bunch of include:spfX.protection.outlook.com entries.
I can confirm they're routing hotmail/live/etc mail thru these ranges.
