* I have a vanity domain: vanity.com * I nominate myself as priority 10 MX * I use my ISP as priority 20 MX * I use somebody else as my priority 30 MX
My ISP doesn't know who somebodyelse is, and they can't always allow mail from somebodyelse because it might be from a spammer.
yes, the patch doesn't work quite right -- if the spammer knows what they are doing, then they can send a two recipient email with the first recipient having a backup MX of the spammer, and the second recipient being the real recipient. However, if the MTA owner only handles forwarding for a restricted set of domains (as they ought), then this doesn't work either.
philip
Ask Bj�rn Hansen wrote:
On Dec 24, 2003, at 7:58 AM, Philip Gladstone wrote:
2) In sender_permitted_from, fix a problem when mail is being sent to you from your MX secondary and you (incorrectly) deny it due to SPF filtering.
Hmn, that's sorta clever -- I can't decide if I think too clever. I suppose we are already doing so many DNS lookups that a couple more won't hurt much. Is this the SPF way of doing it? I would have imagined just having a list of "trusted" IP addresses that wouldn't get SPF checked.
In http://pond.gladstonefamily.net/qp-spf.pf.txt
- ask
