https://bugs.exim.org/show_bug.cgi?id=1399
Graeme Fowler <[email protected]> changed: What |Removed |Added ---------------------------------------------------------------------------- CC| |[email protected] --- Comment #2 from Graeme Fowler <[email protected]> --- Hi Sebastian My reading of the SPF specification is that a domain with multiple TXT/SPF records is not in compliance, as it can result in multiple records being selected when only one is expected. http://tools.ietf.org/html/rfc4408#section-3.1.2 states: 3.1.2. Multiple DNS Records A domain name MUST NOT have multiple records that would cause an authorization check to select more than one record. See Section 4.5 for the selection rules. As such, I'm not 100% sure that either the library or the Exim code are at fault; rather the domains themselves with multiple records need bringing into line. The example you give with neos.io is a particularly good example as it contains two conflicting policies - one with a neutral fail, and one with a soft fail. Although there's not much difference between the two, some applications do handle them differently - so which one do we pick? Graeme -- You are receiving this mail because: You are on the CC list for the bug. -- ## List details at https://lists.exim.org/mailman/listinfo/exim-dev Exim details at http://www.exim.org/ ##
