pypolicyd-spf

Reject spammers using "+all" ?

Asked by John Simpson

I've seen spammers who set up their own domains and use a "+all" term in their SPF records to essentially bypass SPF checks.

I've patched my current server (qmail) to reject these records, by changing the "+" to a "-", so that instead of always accepting their messages, my server always rejects them.

Can this policy agent be configured to do the same thing, or is there some other mechanism to reject "+all" records?

Question information

Language:
English Edit question
Status:
Answered
For:
pypolicyd-spf Edit question
Assignee:
No assignee Edit question
Last query:
Last reply:
Revision history for this message
Scott Kitterman (kitterman) said : 		#1

This idea has been discussed many times and the general conclusion is that there are so many less obvious ways to produce a record that will match anything that specifically rejecting +all isn't worth the trouble. So no, there' no way to do it included.

While I can understand the temptation to do it, I don't think it's something appropriate for general inclusion in this package.

Can you help with this problem?

Provide an answer of your own, or ask John Simpson for more information if necessary.

To post a message you must log in.