> I have seen SEVERAL domains with misconfigured SPF > values. So, getting SPF_FAILs near required_score would, > for sure, block some messages coming from misconfigured > SPF domains which also matches some other rules. False > positives, I dont like that. Anyway, i have raised my > SPF_FAILs scores to: > > score SPF_NEUTRAL 4 > score SPF_SOFTFAIL 4.5 > score SPF_FAIL 5
> I'm running with required_score 8. Failing SPF will > raise a lot the message score, but will not reject it only > because of SPF failing. If it's really a SPAM, it will > certainly hit several other rules (SARE rules helps a lot > here) and, adding SPF fail scores to that, will reach > required score. Thanks for the input, I now know what to do with my scoring. <pedestal> It's my opinion that if an administrator misconfigured his SPF record, or a number of other things on their side, it is their fault that mail cannot be delivered. In the case of SPF_FAIL, they have explicitly told us they don't want mail to come from a server not listed in their record and I believe we should follow their directive. In fact, isn't that the point of SPF; to help us reject forged messages coming from unauthorized servers? Why bother even dealing with SPF if we're still going to let people get away with poor administration? That's partly how we got here in the first place... </pedestal>
