Wow, the reduced their spf record from the full /8, probably missed some servers in the process. Or folks added some new servers and didn't know the new reality.
Brandon On Wed, Oct 31, 2018, 10:16 AM Udeme Ukutt <[email protected] wrote: > I pinged someone at Apple (with the info), it’s being looked into. > > On Wed, Oct 31, 2018 at 8:55 AM Eric Tykwinski <[email protected]> > wrote: > >> Seeing the same here: >> [2018.10.31] 08:06:11 [17.151.1.241][66194430] cmd: EHLO >> nwk-txn-msbadger0211.apple.com >> [2018.10.31] 08:07:17 [17.151.1.244][14063806] cmd: EHLO >> nwk-txn-msbadger0511.apple.com >> [2018.10.31] 08:25:16 [17.151.1.246][47927537] cmd: EHLO >> nwk-txn-msbadger0711.apple.com >> >> These are all from "Apple Business Team <[email protected]>" in the >> from, >> and the marketing campaign is "Order the updated MacBook Air" in the >> subject. >> >> Sincerely, >> >> Eric Tykwinski >> TrueNet, Inc. >> P: 610-429-8300 >> >> > -----Original Message----- >> > From: mailop [mailto:[email protected]] On Behalf Of Tobi >> > Sent: Wednesday, October 31, 2018 8:17 AM >> > To: [email protected] >> > Subject: Re: [mailop] apple.com uses servers not covered by SPF? >> > >> > so far they're all from their 17/8 network >> > Some samples: >> > >> > 17.151.1.86 >> > 17.151.1.45 >> > 17.151.1.98 >> > 17.171.37.90 >> > >> > which are not covered by their ~all spf record for domain apple.com >> > >> > Cheers >> > >> > tobi >> > >> > Am 31.10.18 um 12:38 schrieb Michael Wise: >> > > Are they coming from 17/8, or somewhere else? >> > > And if elsewhere, can you share an IP? >> > > >> > > Aloha, >> > > Michael. >> > > — >> > > “Your Spam Specimen Has Been Processed,” >> > > ________________________________ >> > > From: mailop <[email protected]> on behalf of Tobi >> > <[email protected]> >> > > Sent: Wednesday, October 31, 2018 2:29:18 AM >> > > To: [email protected] >> > > Subject: [mailop] apple.com uses servers not covered by SPF? >> > > >> > > We're currently seeing a lot of messages from "apple.com" sender >> domain >> > > which are delivered via apple servers but not listed in their SPF. >> > > Did they add new servers and forgot to update their SPF? Anyone else >> > > seeing such mails? >> > > >> > > Cheers >> > > >> > > tobi >> > > >> > > _______________________________________________ >> > > mailop mailing list >> > > [email protected] >> > > >> > >> https://na01.safelinks.protection.outlook.com/?url=https%3A%2F%2Fchilli.no >> > signal.org%2Fcgi- >> > bin%2Fmailman%2Flistinfo%2Fmailop&data=02%7C01%7Cmichael.wise% >> > 40microsoft.com%7C791bf4e66f494798b3aa08d63f144b67%7C72f988bf86f >> > 141af91ab2d7cd011db47%7C1%7C0%7C636765753733470417&sdata= >> > KcCpNZT%2FwnJoCbPKHLIor0fYa4h%2BG2pKGJ4277I2pRY%3D&reserved >> > =0 >> > > >> > >> > _______________________________________________ >> > mailop mailing list >> > [email protected] >> > https://chilli.nosignal.org/cgi-bin/mailman/listinfo/mailop >> >> >> >> _______________________________________________ >> mailop mailing list >> [email protected] >> https://chilli.nosignal.org/cgi-bin/mailman/listinfo/mailop >> > _______________________________________________ > mailop mailing list > [email protected] > https://chilli.nosignal.org/cgi-bin/mailman/listinfo/mailop >
_______________________________________________ mailop mailing list [email protected] https://chilli.nosignal.org/cgi-bin/mailman/listinfo/mailop
