Solved

Need help taming SPF in a new Exim4 install

Posted on 2013-01-25
1
606 Views
Last Modified: 2013-01-29
I just set up a new relay server to scan mail for multiple school districts. First I have ever worked with Exim, so not clear how to resolve my issue.  I am using Ubuntu 12.04, Exim4 from the repository and baruwa. Everything is running properly now, except the SPF portion of the Exim config is very aggressive and blocks all email that is not already rejected by the rbl rules. I have included my configs for examination  on Pastebin. I worked with it some last night, which is why some portions of the config for spf have been commented out. I do want spf restrictions, but just not so overly aggresive.

http://pastebin.com/zayefeMz
0
Comment
Question by:tamray_tech
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
1 Comment
 
LVL 79

Accepted Solution

by:
arnold earned 500 total points
ID: 38821452
Line 111 you have a deny comment the line out. You commented line 112 which would have indicated the rejection as permanent, while your current config defer the message for the remote server to try again later.  
Dealing with SPF on the incoming level provides a accept/reject option.
You could instead use accept and mark the message as iffy and then let further content filtering to make the determination of delivery into the mailbox as good or into bulk mail.
SPF also enforces based on parameters the owner of the domain references in their SPF rule
~all, -all.
0

Featured Post

WordPress Tutorial 1: Installation & Setup

WordPress is a very popular option for running your web site and can be used to get your content online quickly for the world to see. This guide will walk you through installing the WordPress server software and the initial setup process.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Resolve DNS query failed errors for Exchange
The new Gmail Phishing Scam going around is surprising even the savviest of users with its sophisticated techniques.
In this Micro Video tutorial you will learn the basics about Database Availability Groups and How to configure one using a live Exchange Server Environment. The video tutorial explains the basics of the Exchange server Database Availability grou…
Nobody understands Phishing better than an anti-spam company. That’s why we are providing Phishing Awareness Training to our customers. According to a report by Verizon, only 3% of targeted users report malicious emails to management. With compan…
Suggested Courses

632 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question