What are your plans for SPF, New SPF, and Domain Keys?
spam fighting
Collapse
X
-
I heard that October 1 was a goal for setting up SPF, and major players are checking for it. I went to http://spf.pobox.com/ but how do I suggest I fill out the wizard form? What are the Dathorn defaults for this kind of information?
When I ran the wizard, this what I got, including instructions (assuming yellowbiggie.net is my ISP) :
If you run BIND
Paste this into your zone file:
mydomain.org. IN TXT "v=spf1 a mx ptr include:yellowbiggie.net -all"
When a mail server sends a bounce message, it uses a null MAIL FROM: <>, and a HELO address that's supposed to be its own name. SPF will still operate, but in "degraded mode" by using the HELO domain name instead. Because this wizard can't tell which name your mail server uses in its HELO command, it lists all possible names, so there may be multiple lines shown below. If you know which hostname your mail server uses in its HELO command, you should pick out the appropriate entries and ignore the rest.
So this should also appear in DNS. You may or may not be in charge of the DNS for these entries; if you are, add them.
69-56-176-98.theplanet.com. IN TXT "v=spf1 a -all"
Now I would have to put this info in the zone file and DNS. Good idea? Easy? Trouble ticket required?Last edited by mdmcginn; 10-25-2004, 11:27 AM.Comment
-
Anything further as to whether Dathorn is considering using SPF? It appears to be gathering steam as a new "standard". Here is a site that tracks registrars and DNS providers thatsupport SPF. http://www.telefonica.net/web/news/spf/
Cheers
KirbyComment
-
SPF is something you can add to your own zone records for your DNS.
I am not sure where MDM came up with the line in question there but the typical line in your DNS would be:
Code:<domain.com> IN TXT "v=spf1 a -all"
v=spf1 = This identifies the TXT record as an SPF string.
a = <domain.com>'s IP address is xxx.xxx.xxx.xxx That server is allowed to send mail from <domain.com>
-all = No other servers are allowed to send mail from <domain.com>.
This is a good default for sites particularly concerned about forgery.
Code:<domain.com> IN TXT "v=spf1 a include:<isp.com> ~all"
Any server allowed to send mail from <isp.com> is also allowed to send mail from <domain.com>
Hope that helpsComment
-
Verizon whitelist wands SPF records
My client started getting bounced, sending sales receipt emails to verizon.net customers. Verizon, when they notified me, invited me to submit to their whitelist process which asked if the sender had SPF records.
I found how to add an SPF template for newly created domains. How to I go back and change my existing domains that spoofers are using to trash Europe?Comment
Comment