>Surely deploying ~all is done in order for you to determine which edge cases >won't pass, prior to considering a move to -all?
In a word, no. If your name is Paypal, you can probably control the hosts that send mail with your return address, the mail is of low value since it rarely says anything more than to log in and check your account, and you are so heavily phished that the costs of losing a little legitimate mail are vastly outweighed by the benfits of less phishing. They publish -all and it makes sense. If your name is not Paypal, and particularly if your domain is used by humans to send mail, ~all means what it says, this isn't my host, but the mail might be OK anyway. Anyone who thinks that the world's mail systems will reorganize themselves for the convenience of SPF fans hasn't been paying attention for the past decade. R's, John _______________________________________________ mailop mailing list mailop@mailop.org https://chilli.nosignal.org/cgi-bin/mailman/listinfo/mailop
