John Hardin skrev den 2013-08-08 22:49:
SPF is _by itself_ not useful as a spam sign.
-1
If you're seeing a lot of facebook spam that fails SPF because it's
being forged, then a rule that checks SPF_FAIL *IF* the mail claims
to
be from Facebook, and adds a point or two, would be more reasonable.
why not check if dkim passed then ?, combine body facebook, with
spf_fail and no dkim headers, its 3 lines :)
the bug is not a bug, but a missing rule
for the OP problem is why did he allow spf_fails in mta ?
