SPF - Best Practice

Hi Guys,

We are trying to setup SPF for a number of clients, but we're not 100% sure what we need to configure to only accept the senders email.

I understand that SPF is a service that blocks spam/spoof emails from senders who pretend they are someone else.

What is the best practice or recommended approach in setting up SPF? Is it best to setup to include mx, ptr, ip, a etc? Or is there another way?

We want to setup so it doesnt disrupt or hinder in any way shape or form between companies.

Apologies in advance, my knowledge is quite basic when it comes to SPF.

Thanks!
LVL 2
goraekAsked:
Who is Participating?

Improve company productivity with a Business Account.Sign Up

x
 
Dave BaldwinConnect With a Mentor Fixer of ProblemsCommented:
Many of us here use SPF.  http://www.openspf.org/ and http://www.microsoft.com/mscorp/safety/technologies/senderid/default.mspx are the authorities on SPF.  'include' and all the other options are explained here: http://www.openspf.org/SPF_Record_Syntax

Click on "Request Attention" if you want some others to look at your question.
0
 
Dave BaldwinFixer of ProblemsCommented:
That isn't SPF at all.  SPF is contained in a TEXT record that says who is allowed to send email in the name of your domain.  Microsoft has a page to generate the text for you:  http://www.microsoft.com/mscorp/safety/content/technologies/senderid/wizard/

Definition here: http://www.microsoft.com/mscorp/safety/technologies/senderid/default.mspx

Note also that SPF is not 'automatic'.  Some email services use it and some don't.  It is just another step that you can take to minimize spam being sent in your name.
0
 
goraekAuthor Commented:
We have setup TXT entries, and used the above link to check, but it says theres no SPF record.

Any ideas?

This is our current TXT record

mydomain.com TXT v=spf1 include:externaldomain.com ~all

Is this correct?
0
Managing Security & Risk at the Speed of Business

Gartner Research VP, Neil McDonald & AlgoSec CTO, Prof. Avishai Wool, discuss the business-driven approach to automated security policy management, its benefits and how to align security policy management with business processes to address today's security challenges.

 
Dave BaldwinFixer of ProblemsCommented:
0
 
goraekAuthor Commented:
How do I authorise multiple mail servers?
0
 
Dave BaldwinFixer of ProblemsCommented:
Don't know, never tried that.  Here's the 'official' pages: http://www.openspf.org/
0
 
goraekAuthor Commented:
Yeah I checked.

When it has "include" what does that mean?

Has anyone had any experience in SPF?
0
 
goraekAuthor Commented:
Good info
0
 
Dave BaldwinFixer of ProblemsCommented:
Thanks for the points.
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.