On Thu 24/Mar/2016 03:12:14 +0100 Sam Varshavchik wrote: > [email protected] writes: > >> Hello, >> >> I would like to know what are recommended SPF options. > > The "Sender Policy Framework Keywords" section in the courier(8) man page has > a > brief discussion about the suggested options.
It also depends on your SPF policy. If it's rcdrun, beware multiple records make it invalid: $ dig +short rcdrun.com txt "v=spf1 a mx -all" "v=spf1 a mx ~all" (You may want to [email protected] for advice on that) In case you choose to enforce -all, I recommend to follow literally the first and last bullets of Appendix D of RFC 7208, namely: o "Neutral" results could be given for IP addresses that might be forwarders, instead of "fail" results based on a list of known reliable forwarders. For example: "v=spf1 mx ?exists:%{ir}.whitelist.example.org -all" and o For larger domains, it might not be possible to have a complete or accurate list of forwarding services used by the owners of the domain's mailboxes. In such cases, whitelists of generally recognized forwarding services could be employed. The latter point is achieved using -allow and allowok combination. jm2c Ale -- ------------------------------------------------------------------------------ Transform Data into Opportunity. Accelerate data analysis in your applications with Intel Data Analytics Acceleration Library. Click to learn more. http://pubads.g.doubleclick.net/gampad/clk?id=278785351&iu=/4140 _______________________________________________ courier-users mailing list [email protected] Unsubscribe: https://lists.sourceforge.net/lists/listinfo/courier-users
