On Wed, 15 Jul 2015, David Jones wrote:
From: Bowie Bailey
On 7/15/2015 4:04 PM, Kevin A. McGrail wrote:
Why is it looking for an SPF record for rrdesp.com? That is the
sending server, shouldn't it be using the domain from the From or
Envelope-From instead? This SPF check looks backwards to me. Am I
missing something?
No, you are on the right path. SPF checks the envelope not the From:
Header. Without something like DKIM, the whitelist_auth likely isn't
applicable for your situation.
I haven't seen all the headers exactly to prove this will work but it should:
whitelist_from_rcvd *@staplesbilling.com rrdesp.com
I used whitelist_from_rcvd extensively in the years before SPF/DKIM became
available. It works but is a bit fragile. It depends upon a couple of things:
1) having a reliable source of the envelope-from address
2) the sending systems having a reliable FCDNS
3) staying on top of changes in the sender's MSP choices, name changes.
It looks like Bowie already has issues with his envelope-from address
availability to SA, so he should work on that first.
--
Dave Funk University of Iowa
<dbfunk (at) engineering.uiowa.edu> College of Engineering
319/335-5751 FAX: 319/384-0549 1256 Seamans Center
Sys_admin/Postmaster/cell_admin Iowa City, IA 52242-1527
#include <std_disclaimer.h>
Better is not better, 'standard' is better. B{
