On 12/10/24 10:55, Syafril Hermansyah via Mdaemon-L wrote:
On 12/10/24 10:26, Rievo Niemrod Efraim via Mdaemon-L wrote:
Carikan log transaksinya di smtp-in log tanggal 2024-12-09.


Mon 2024-12-09 19:57:45.583: [33026709] <-- MAIL FROM:<ad...@ptbmi.com> SIZE=14346
Mon 2024-12-09 19:57:45.682: [33026709] Performing IP lookup (ptbmi.com)
Mon 2024-12-09 19:57:45.712: [33026709] *  D=ptbmi.com TTL=(13) A=[202.148.11.126] Mon 2024-12-09 19:57:45.728: [33026709] *  P=005 S=000 D=ptbmi.com TTL=(0) MX=[bb.ptbmi.com] Mon 2024-12-09 19:57:45.744: [33026709] *  D=bb.ptbmi.com TTL=(12) A=[202.148.25.131]
Mon 2024-12-09 19:57:45.744: [33026709] ---- End IP lookup results

MDaemon tidak melakukan SPF check.
Apakah ptbmi.com atau IP 103.146.203.235 masuk dalam exempt SPF list?

https://mdaemon.dutaint.com/mdaemon/24.5.0/security--spf__sender_id.html

Exempt List

Click this button to open the SPF Exception List on which you can designate IP addresses, email addresses, and domains that you wish to exempt from SPF lookups. Email addresses are compared against the SMTP envelope not the message From header. Domains are exempted by placing the word "spf" in front of the domain name. MDaemon will include that domain's SPF record in every SPF evaluation using an MDaemon specific "wlinclude:<domain>" tag. In this way you can have your backup MX provider treated as a valid SPF source for all senders.

tapi btw itu kok dari alias email saya ya, apa jangan2 email sya ke hack ?


Tidak di hack, tetapi salah exempt (bypass, pengecualian).

Kalau dilakukan SPF check pasti akan ditolak.

https://mxtoolbox.com/SuperTool.aspx?action=spf%3aptbmi.com%3a103.146.203.235&run=toolpage

Result: SPF Failed for IP - 103.146.203.235


Singkatnya, yang dicari dari daftar exempt adalah apakah ada isian mirip berikut

winclude:ptbmi.com
spf ptbmi.com
*@ptbmi.com

yang menyebabkan SPF check dari sender @ptbmi.com di exempt (bypass, tidak melakukan check). Isian-isian tersebut perlu dihapus atau diberi comment tag (#) didepan barisnya agar tidak berfungsi.



--
syafril
-------
Syafril Hermansyah

MDaemon-L Moderator, run MDaemon 24.5.2
Mohon tidak kirim private mail (atau cc:) untuk masalah MDaemon.

In tough world, using strategy is how you survive.
        -- Jack Trout

--
--[mdaemon-l]----------------------------------------------------------
Milis ini untuk Diskusi antar pengguna MDaemon Mail Server di Indonesia

Netiket: https://wiki.openstack.org/wiki/MailingListEtiquette
Arsip: http://mdaemon-l.dutaint.com
Dokumentasi : http://mdaemon.dutaint.com
Berlangganan: Kirim mail ke mdaemon-l-subscr...@dutaint.com
Henti Langgan: Kirim mail ke mdaemon-l-unsubscr...@dutaint.com
Versi terakhir: MDaemon 24.5.2, SecurityGateway 10.5.2



Kirim email ke