[jira] [Updated] (JAMES-3869) JSPF mailet should skip private networks in addition to 127.0.0.1 and use correct HELO

Fri, 16 Dec 2022 03:02:40 -0800 


     [ 
https://issues.apache.org/jira/browse/JAMES-3869?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
 ]

ouvtam updated JAMES-3869:
--------------------------
    Description: 
h3. Private Networks

The JSPF mailet skips SPF checks for remote address 127.0.0.1.

In addition, the mailet should also skip SPF check for following private class 
networks:
 * 127.0.0.0/8
 * 10.0.0.0/8
 * 172.16.0.0 – 172.31.255.255
 * 192.168.0.0/16

Make it configurable to add more flexibility to exclude other networks.
h3. HELO Check

Currently the SPF HELO check uses the remote address instead of the HELO 
provided by the SMTP session. The SPF HELO check gets important for null 
senders (e.g. bounces) when no sender address is available.

  was:
The JSPF mailet skips SPF checks for remote address 127.0.0.1.

In addition, the mailet should also skip SPF check for following private class 
networks:
 * 127.0.0.0/8
 * 10.0.0.0/8
 * 172.16.0.0 – 172.31.255.255
 * 192.168.0.0/16

Make it configurable to add more flexibility to exclude other networks.

        Summary: JSPF mailet should skip private networks in addition to 
127.0.0.1 and use correct HELO  (was: JSPF mailet should skip private networks 
in addition to 127.0.0.1)

> JSPF mailet should skip private networks in addition to 127.0.0.1 and use 
> correct HELO
> --------------------------------------------------------------------------------------
>
>                 Key: JAMES-3869
>                 URL: https://issues.apache.org/jira/browse/JAMES-3869
>             Project: James Server
>          Issue Type: Improvement
>            Reporter: ouvtam
>            Priority: Minor
>          Time Spent: 10m
>  Remaining Estimate: 0h
>
> h3. Private Networks
> The JSPF mailet skips SPF checks for remote address 127.0.0.1.
> In addition, the mailet should also skip SPF check for following private 
> class networks:
>  * 127.0.0.0/8
>  * 10.0.0.0/8
>  * 172.16.0.0 – 172.31.255.255
>  * 192.168.0.0/16
> Make it configurable to add more flexibility to exclude other networks.
> h3. HELO Check
> Currently the SPF HELO check uses the remote address instead of the HELO 
> provided by the SMTP session. The SPF HELO check gets important for null 
> senders (e.g. bounces) when no sender address is available.



--
This message was sent by Atlassian Jira
(v8.20.10#820010)

---------------------------------------------------------------------
To unsubscribe, e-mail: server-dev-unsubscr...@james.apache.org
For additional commands, e-mail: server-dev-h...@james.apache.org

Reply via email to