SRS was never accepted as a standard. Some servers implement SRS and some do not. There is at least one good reason to avoid SRS: by rewriting sender you add your domain's SPF authentication to the messages you do not control, including spam. Content of forwarded messages may (negatively) affect your domain's reputation.
17.03.2018 20:01, [email protected] пишет: > Am 17.03.2018 um 12:19 schrieb Vladimir Dubrovin: > >> Probably, somebody has set a redirection rule from his outlook account >> to mailbox on your server. If so, there is no problem except >> misconception valid mail can only arrive from SPF authenticated server. > Well... if it is a foward, then Microsoft servers are not following SRS. > And the intention of the SPF is to prevent that servers send mails for > domain they are not authorized for. > > I see these errors only for facebookmail.com and only from this range of > IPs. > > A search shows that MS/Outlook does indeed not implement any proper > mechanism to avoid trouble with SPF when forwarding mails. > > "[...]To fix this issue, a sender rewriting scheme is being rolled out > in Office 365 that will change the sender email address to use the > domain of the tenant whose mailbox is forwarding the message. [...] > > Estimated Release: Q3 CY2018 > > A pity that MS recognizes the increased amount of bounces and needs a > year to fix that. Luckily I do not use/depend from that sort of broken > service for myself. > > Regards, > > Andreas > >> >> 17.03.2018 15:38, [email protected] пишет: >>> Hi! >>> >>> In my mail server logs, I notice for weeks attemps of 40.92.6x.xx IPs >>> (outbound.protection.outlook.com) to deliver mails for the >>> facebookmail.com domain despite that these Microsoft IPs are not listed >>> in the SPF record of facebookmail.com. >>> >>> A report of the problem to the Microsoft CERT a week ago remained >>> unanswered and without any other reaction. >>> >>> Some examples: >>> >>> 1 Mar 16 09:51:21 frodo postfix/policy-spf[7616]: Policy action=550 >>> Please see >>> http://www.openspf.net/Why?s=mfrom;id=update%2Bzj4o9%3Dzsy6t9%40facebookmail.com;ip=40.92.66.106;r=frodo.akxnet.de >>> 1 Mar 16 15:12:55 frodo postfix/policy-spf[14982]: Policy >>> action=550 Please see >>> http://www.openspf.net/Why?s=mfrom;id=notification%2Bzj4o9%3Dzsy6t9%40facebookmail.com;ip=40.92.69.92;r=frodo.akxnet.de >>> 1 Mar 16 09:42:08 frodo postfix/policy-spf[6563]: Policy >>> action=550 Please see >>> http://www.openspf.net/Why?s=mfrom;id=notification%2Bzj4o9%3Dzsy6t9%40facebookmail.com;ip=40.92.65.65;r=frodo.akxnet.de >>> >>> Does anyone else has that problem? And if yes, is there any other way to >>> get Microsoft aware of that and stop those attempts? >>> >>> Regards, >>> >>> Andreas >>> >>> _______________________________________________ >>> mailop mailing list >>> [email protected] >>> https://chilli.nosignal.org/cgi-bin/mailman/listinfo/mailop >> > > _______________________________________________ > mailop mailing list > [email protected] > https://chilli.nosignal.org/cgi-bin/mailman/listinfo/mailop -- Vladimir Dubrovin @Mail.Ru _______________________________________________ mailop mailing list [email protected] https://chilli.nosignal.org/cgi-bin/mailman/listinfo/mailop
