Solved

Need help taming SPF in a new Exim4 install

Posted on 2013-01-25
1
602 Views
Last Modified: 2013-01-29
I just set up a new relay server to scan mail for multiple school districts. First I have ever worked with Exim, so not clear how to resolve my issue.  I am using Ubuntu 12.04, Exim4 from the repository and baruwa. Everything is running properly now, except the SPF portion of the Exim config is very aggressive and blocks all email that is not already rejected by the rbl rules. I have included my configs for examination  on Pastebin. I worked with it some last night, which is why some portions of the config for spf have been commented out. I do want spf restrictions, but just not so overly aggresive.

http://pastebin.com/zayefeMz
0
Comment
Question by:tamray_tech
1 Comment
 
LVL 77

Accepted Solution

by:
arnold earned 500 total points
ID: 38821452
Line 111 you have a deny comment the line out. You commented line 112 which would have indicated the rejection as permanent, while your current config defer the message for the remote server to try again later.  
Dealing with SPF on the incoming level provides a accept/reject option.
You could instead use accept and mark the message as iffy and then let further content filtering to make the determination of delivery into the mailbox as good or into bulk mail.
SPF also enforces based on parameters the owner of the domain references in their SPF rule
~all, -all.
0

Featured Post

Ransomware: The New Cyber Threat & How to Stop It

This infographic explains ransomware, type of malware that blocks access to your files or your systems and holds them hostage until a ransom is paid. It also examines the different types of ransomware and explains what you can do to thwart this sinister online threat.  

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

The purpose of this article is to demonstrate how we can use conditional statements using Python.
Phishing attempts can come in all forms, shapes and sizes. No matter how familiar you think you are with them, always remember to take extra precaution when opening an email with attachments or links.
In this video we show how to create an Address List in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Organization >> Ad…
To show how to generate a certificate request in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.:  First we need to log into the Exchange Admin Center. Navigate to the Servers >> Certificates…

810 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question