On 2020/09/13 22:48, Giovanni Bechis wrote:
> "smtpctl spf walk" doesn't work as it should because it breaks when it finds
> macros as defined in RFC 7208.
>
> $ echo ryanair.com | smtpctl spf walk
> gives no output while dig reply is:
> $ dig txt ryanair.com | grep spf
> ryanair.com. 17 IN TXT "v=spf1
> include:ryanair.com._nspf.vali.email
> include:%{i}._ip.%{h}._ehlo.%{d}._spf.vali.email ~all"
"spf walk" should return a warning or an error in these cases.
> Is it worth mentioning in smtpctl in CAVEATS section or somewhere else ?
Maybe in caveats, but if it's there it should be referenced in the
description of "spf walk" too, to make it easier to find.
Text something like this?
"SPF records may contain macros which cannot be included in a static list
and must be resolved dynamically at connection time.
spf walk cannot provide full results in these cases."
