https://issues.apache.org/SpamAssassin/show_bug.cgi?id=6575
--- Comment #5 from [email protected] 2011-05-05 19:31:52 UTC --- Good question. However, an SPF check can go forward if "Return-Path" is present (since that is the envelope-from data). Also, some people specifically disable the "Received-SPF"/"Authentication-Results" check because they consider that as untrusted, especially for forwarded mail. Although technically incorrect, I do feel that "from" (as a fallback to RP) should be tested as in the plurality of e-mail, it will be correct. SPF testing "from" will also catch the case where spam is forged in the headers to be from the recipient, as those who do send messages to themselves will often know where such messages will source and can designate an SPF string which will detect such forgeries. Testing "from" is better than testing nothing. -- Configure bugmail: https://issues.apache.org/SpamAssassin/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are the assignee for the bug.
