----- Original Message -----
From: "R. Scott Perry" <[EMAIL PROTECTED]>
> >This was my thought, as well. I have already found e-mail that I felt
was
> >spam that had valid SPF records.
>
> I'm curious about this one -- could you let me know the domain?
I was a little hasty in my statement above. When I went to retrieve the
domain for you, I checked on the site and did a closer review of the
messages and found that they were e-mails from a legitimate opt-in list.
However, I will keep track and report any questionable findings.
> I think whitelisting E-mail based on an SPF PASS probably isn't a wise
> idea, but I'm sure that spammers that do use SPF will be much easier to
> catch (they are providing a list of IPs that they may be spamming from
<G>).
Yes, this is a good thing, indeed!
> >I believe it is the domain part of the original sender's e-mail address
that
> >is queried for its txt record. Scott, is this correct? However, it
appears
> >to use the list servers domain address if sent from a mailing list.
>
> Normally, it uses the return address of the E-mail (MAILFROM, from the
> X-Declude-Sender: header). However, if there is a NULL <> return address,
> or the address isn't valid ("postmaster", for example), then the domain in
> the HELO/EHLO will be used.
Thanks for the clarification.
Bill
---
[This E-mail was scanned for viruses by Declude Virus (http://www.declude.com)]
---
This E-mail came from the Declude.JunkMail mailing list. To
unsubscribe, just send an E-mail to [EMAIL PROTECTED], and
type "unsubscribe Declude.JunkMail". The archives can be found
at http://www.mail-archive.com.
