And now to go into "SPF for Dummies" territory, the mailfroms were definitely spoofed, or in the normal course of events could have been mailing list or greeting card invitations that unwisely put in the "sender's" address in the mailfrom instead of their own?
It could be either. However, the burden now lies on the greeting card sites (and in rare cases mailing lists) to fix their problem. Specifically, the sites that have a problem are ones that let a web site user enter an E-mail address, and they use that address in the SMTP envelope. Instead, they should be using their own address (which ensures that any bounce messages will go back to them). If it is set up properly, it will work with SPF. But, of course, there are some greeting card sites and similar sites (such as news sites) that aren't properly set up yet.
-Scott
---
Declude JunkMail: The advanced anti-spam solution for IMail mailservers.
Declude Virus: Catches known viruses and is the leader in mailserver vulnerability detection.
Find out what you've been missing: Ask about our free 30-day evaluation.
--- [This E-mail was scanned for viruses by Declude Virus (http://www.declude.com)]
--- This E-mail came from the Declude.JunkMail mailing list. To unsubscribe, just send an E-mail to [EMAIL PROTECTED], and type "unsubscribe Declude.JunkMail". The archives can be found at http://www.mail-archive.com.
