On Tuesday 10 January 2006 01:21 am, [EMAIL PROTECTED] wrote: > >> > What would be the correct way of dealing with this situation ? As a > >> > workaround I have used whitelist_from_rvc [EMAIL PROTECTED], which seems > >> > to be a great workaround, because I have rules in postfix that do not > >> > allow external users that do NOT authenticate to send messages with my > >> > own domain, not even to my local users. > >> > >> There's nothing wrong with that solution since you have Postfix setup to > >> refuse mail to local address from un-auth'd users. > > I implemented a similar setup a while ago, and it turned out that some > legit (although suspiciously looking) mails from ebay were blocked. > I had to whitelist ebay there.. > This particular user is no longer there, so I dont know whether ebay have > revised these mails since > > Wolfgang Hamann
AFAIK ebay, paypal, and quickbooks all (can) send mail on behalf of a user using their (real) email address, and is one of the gotchas of SPF. My solution was to include ebay/paypal's SPF records in our own on the assumption that they're unlikely to joe-job.
