On Sun, 7 May 2017 13:08:03 +0200 Matus UHLAR - fantomas wrote: > On 07.05.17 12:46, Thore Boedecker wrote: > >I have played around with it and SA is not performing actual SPF > >queries/validations due to the use of spampd on localhost as a > >proxy.
SA needs a trusted internal received header to be present at the time of the scan. If it's missing you will break a lot more than SPF. > that's why I recommended trying policyd-spf on valhalla.nano-srv.net > - it could be able to push Received-SPF: header SA could use after... > But be aware that a Received-SPF header can only be used if SA finds it above a trusted received header.
