• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 1177
  • Last Modified:

Multiple spf records for the same domain name

My question is as follows...

TXT records are limited to 255 characters, but what happens if your SPF record is longer? What is the right thing to do.

Is it:
[step="A" title="A"]Have separate SPF records with the same domain[/step]
OR
[step="B" title="B"]Have the first SPF record include a 2nd domain[/step]

I will give examples below

A.
yourdomain.com. IN TXT "v=spf1 ip4:<IP allocations> include:<somedomains.com> ~all"
yourdomain.com. IN TXT "v=spf1 ip4:<More IP allocations> include:<somemoredomains.com> ~all"

Open in new window



B.
yourdomain.com. IN TXT "v=spf1 ip4:<IP allocations> include:<somedomains.com> include:spf2.yourdomain.com ~all"
spf2.yourdomain.com. IN TXT "v=spf1 ip4:<More IP allocations> include:<somemoredomains.com> ~all"

Open in new window

0
jasonatspigit
Asked:
jasonatspigit
  • 2
2 Solutions
 
ravenplCommented:
According to http://www.openspf.org/svn/project/specs/rfc4408.txt section 4.5
You need the (B) way.
0
 
jasonatspigitAuthor Commented:
I have read that section over and over again and I am not seeing what you're seeing. How does that state B is the definite solution? The site is not accessible at the moment though.
0
 
ravenplCommented:
  After the above steps, there should be exactly one record remaining
   and evaluation can proceed.  If there are two or more records
   remaining, then check_host() exits immediately with the result of
   "PermError".

IMHO the above clearly states (A) returns PermError. B should work though.
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

Worried about phishing attacks?

90% of attacks start with a phish. It’s critical that IT admins and MSSPs have the right security in place to protect their end users from these phishing attacks. Check out our latest feature brief for tips and tricks to keep your employees off a hackers line!

  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now