On 14 Mar 2018, at 6:28 (-0400), L.P.H. van Belle wrote:
Or why not use and SPF like this in the dns.
your.domain.tld TXT “v=spf1 -exists:%{ir}.zen.spamhaus.org +mx
-all exp:explain.your.domain.tld”
explain.your.domain.tld TXT "SPF error %{i} is not one of %{d}’s
designated mail servers.”
Now these never reaches your server, saving cpu cycles etc.
1. That only effects mail FROM your domain, which you can controlled
much more directly for your own MTA in your own MTA.
2. It's redundant: '+mx -all' has the same operational meaning.
3. The syntax (trailing 'exp:' ) will pointlessly challenge SPF
implementations, as it is rarely used and essentially useless.
4. It recommends to others that they use Zen in a manner that it is
unfit for.
5. For many domains, "+mx -all" is unsuitable in both parts.
--
Bill Cole
b...@scconsult.com or billc...@apache.org
(AKA @grumpybozo and many *@billmail.scconsult.com addresses)
Currently Seeking Steady Work: https://linkedin.com/in/billcole
