Mailing List Archive: SPF: Help

Help

Index | Next | Previous | View Threaded

sdrenner at midwaynet

Oct 13, 2004, 8:15 AM

Post #1 of 24 (7025 views)
Permalink

Help

I am trying to put in the spf txt line in my DNS Server. I guess I am not
sure in what file and where in the file this should go.
I added the line to my db.domainname and then went to www.dnsreport.com and
it says that the spf file is there but when I go to
http://www.dnsstuff.com/pages/spf.htm
it says fail.

I am running bind on my Linux servers for dns.

in my db.domainname I put (IN TXT v=spfl a include:midwaynet.net -all)

Thanks for any help
Steve

-------
Archives at http://archives.listbox.com/spf-help/current/
Donate! http://spf.pobox.com/donations.html
To unsubscribe, change your address, or temporarily deactivate your subscription,
please go to http://v2.listbox.com/member/?listname=spf-help [at] v2

Wards at bmcmask

Oct 13, 2004, 8:17 AM

Post #2 of 24 (6878 views)
Permalink

RE: Help [In reply to]

Do you have an A record for your domain?

-----Original Message-----
From: Steve J. Drenner [mailto:sdrenner [at] midwaynet]
Sent: Wednesday, October 13, 2004 11:16 AM
To: spf-help [at] v2
Subject: [spf-help] Help

I am trying to put in the spf txt line in my DNS Server. I guess I am not
sure in what file and where in the file this should go.
I added the line to my db.domainname and then went to www.dnsreport.com and
it says that the spf file is there but when I go to
http://www.dnsstuff.com/pages/spf.htm
it says fail.

I am running bind on my Linux servers for dns.

in my db.domainname I put (IN TXT v=spfl a include:midwaynet.net -all)

Thanks for any help
Steve

-------
Archives at http://archives.listbox.com/spf-help/current/
Donate! http://spf.pobox.com/donations.html
To unsubscribe, change your address, or temporarily deactivate your
subscription,
please go to http://v2.listbox.com/member/?listname=spf-help [at] v2

Confidentiality Notice: The information contained in this e-mail and any
attachments may be legally privileged and confidential. If you are not an
intended recipient, you are hereby notified that any dissemination,
distribution or copying of this e-mail is strictly prohibited. If you have
received this e-mail in error, please notify the sender and permanently
delete the e-mail and any attachments immediately. You should not retain,
copy or use this e-mail or any attachment for any purpose, nor disclose all
or any part of the contents to any other person.

-------
Archives at http://archives.listbox.com/spf-help/current/
Donate! http://spf.pobox.com/donations.html
To unsubscribe, change your address, or temporarily deactivate your subscription,
please go to http://v2.listbox.com/member/?listname=spf-help [at] v2

sdrenner at midwaynet

Oct 13, 2004, 8:28 AM

Post #3 of 24 (6858 views)
Permalink

RE: Help [In reply to]

Yes, and here is a copy of one of the zones;

@ IN SOA midwaynet3.midwaynet.net.
hostmaster.midwaynet.net. (
2004101201 ; serial
10800 ; refresh after 3 hours
3600 ; retry after 1 hour
604800 ; expire after 1 week
86400 ; ttl of 1 day
)

NS ns1.midwaynet.net.
NS ns2.midwaynet.net.
IN MX 10 mail.midwaynet.net.
IN A 12.159.225.9

www IN A 12.159.225.9
ftp IN A 12.159.225.9
mail IN A 12.159.225.6
IN TXT "v=spfl a include:midwaynet.net -all"

-----Original Message-----
From: owner-spf-help [at] v2
[mailto:owner-spf-help [at] v2]On Behalf Of Ward, Stuart
Sent: Wednesday, October 13, 2004 10:18 AM
To: 'spf-help [at] v2'
Subject: RE: [spf-help] Help

Do you have an A record for your domain?

-----Original Message-----
From: Steve J. Drenner [mailto:sdrenner [at] midwaynet]
Sent: Wednesday, October 13, 2004 11:16 AM
To: spf-help [at] v2
Subject: [spf-help] Help

I am trying to put in the spf txt line in my DNS Server. I guess I am not
sure in what file and where in the file this should go.
I added the line to my db.domainname and then went to www.dnsreport.com and
it says that the spf file is there but when I go to
http://www.dnsstuff.com/pages/spf.htm
it says fail.

I am running bind on my Linux servers for dns.

in my db.domainname I put (IN TXT v=spfl a include:midwaynet.net -all)

Thanks for any help
Steve

-------
Archives at http://archives.listbox.com/spf-help/current/
Donate! http://spf.pobox.com/donations.html
To unsubscribe, change your address, or temporarily deactivate your
subscription,
please go to http://v2.listbox.com/member/?listname=spf-help [at] v2

Confidentiality Notice: The information contained in this e-mail and any
attachments may be legally privileged and confidential. If you are not an
intended recipient, you are hereby notified that any dissemination,
distribution or copying of this e-mail is strictly prohibited. If you have
received this e-mail in error, please notify the sender and permanently
delete the e-mail and any attachments immediately. You should not retain,
copy or use this e-mail or any attachment for any purpose, nor disclose all
or any part of the contents to any other person.

-------
Archives at http://archives.listbox.com/spf-help/current/
Donate! http://spf.pobox.com/donations.html
To unsubscribe, change your address, or temporarily deactivate your
subscription,
please go to http://v2.listbox.com/member/?listname=spf-help [at] v2

-------
Archives at http://archives.listbox.com/spf-help/current/
Donate! http://spf.pobox.com/donations.html
To unsubscribe, change your address, or temporarily deactivate your subscription,
please go to http://v2.listbox.com/member/?listname=spf-help [at] v2

Wards at bmcmask

Oct 13, 2004, 8:37 AM

Post #4 of 24 (6874 views)
Permalink

RE: Help [In reply to]

Do you also send outbound through the server at 12.159.225.6?

Shouldn't "IN A 12.159.225.9" be "midwaynet.net IN A 12.159.225.9"

-----Original Message-----
From: Steve J. Drenner [mailto:sdrenner [at] midwaynet]
Sent: Wednesday, October 13, 2004 11:29 AM
To: spf-help [at] v2
Subject: RE: [spf-help] Help

Yes, and here is a copy of one of the zones;

@ IN SOA midwaynet3.midwaynet.net.
hostmaster.midwaynet.net. (
2004101201 ; serial
10800 ; refresh after 3 hours
3600 ; retry after 1 hour
604800 ; expire after 1 week
86400 ; ttl of 1 day
)

NS ns1.midwaynet.net.
NS ns2.midwaynet.net.
IN MX 10 mail.midwaynet.net.
IN A 12.159.225.9

www IN A 12.159.225.9
ftp IN A 12.159.225.9
mail IN A 12.159.225.6
IN TXT "v=spfl a include:midwaynet.net -all"

-----Original Message-----
From: owner-spf-help [at] v2
[mailto:owner-spf-help [at] v2]On Behalf Of Ward, Stuart
Sent: Wednesday, October 13, 2004 10:18 AM
To: 'spf-help [at] v2'
Subject: RE: [spf-help] Help

Do you have an A record for your domain?

-----Original Message-----
From: Steve J. Drenner [mailto:sdrenner [at] midwaynet]
Sent: Wednesday, October 13, 2004 11:16 AM
To: spf-help [at] v2
Subject: [spf-help] Help

I am trying to put in the spf txt line in my DNS Server. I guess I am not
sure in what file and where in the file this should go.
I added the line to my db.domainname and then went to www.dnsreport.com and
it says that the spf file is there but when I go to
http://www.dnsstuff.com/pages/spf.htm
it says fail.

I am running bind on my Linux servers for dns.

in my db.domainname I put (IN TXT v=spfl a include:midwaynet.net -all)

Thanks for any help
Steve

-------
Archives at http://archives.listbox.com/spf-help/current/
Donate! http://spf.pobox.com/donations.html
To unsubscribe, change your address, or temporarily deactivate your
subscription,
please go to http://v2.listbox.com/member/?listname=spf-help [at] v2

Confidentiality Notice: The information contained in this e-mail and any
attachments may be legally privileged and confidential. If you are not an
intended recipient, you are hereby notified that any dissemination,
distribution or copying of this e-mail is strictly prohibited. If you have
received this e-mail in error, please notify the sender and permanently
delete the e-mail and any attachments immediately. You should not retain,
copy or use this e-mail or any attachment for any purpose, nor disclose all
or any part of the contents to any other person.

-------
Archives at http://archives.listbox.com/spf-help/current/
Donate! http://spf.pobox.com/donations.html
To unsubscribe, change your address, or temporarily deactivate your
subscription,
please go to http://v2.listbox.com/member/?listname=spf-help [at] v2

-------
Archives at http://archives.listbox.com/spf-help/current/
Donate! http://spf.pobox.com/donations.html
To unsubscribe, change your address, or temporarily deactivate your
subscription,
please go to http://v2.listbox.com/member/?listname=spf-help [at] v2

Confidentiality Notice: The information contained in this e-mail and any
attachments may be legally privileged and confidential. If you are not an
intended recipient, you are hereby notified that any dissemination,
distribution or copying of this e-mail is strictly prohibited. If you have
received this e-mail in error, please notify the sender and permanently
delete the e-mail and any attachments immediately. You should not retain,
copy or use this e-mail or any attachment for any purpose, nor disclose all
or any part of the contents to any other person.

-------
Archives at http://archives.listbox.com/spf-help/current/
Donate! http://spf.pobox.com/donations.html
To unsubscribe, change your address, or temporarily deactivate your subscription,
please go to http://v2.listbox.com/member/?listname=spf-help [at] v2

spf at metro

Oct 13, 2004, 8:44 AM

Post #5 of 24 (6913 views)
Permalink

Re: Help [In reply to]

Hi,

On Wed, Oct 13, 2004 at 10:15:51AM -0500, Steve J. Drenner wrote:
> I am trying to put in the spf txt line in my DNS Server. I guess I am not
> sure in what file and where in the file this should go.
> I added the line to my db.domainname and then went to www.dnsreport.com and
> it says that the spf file is there but when I go to
> http://www.dnsstuff.com/pages/spf.htm
> it says fail.
>
> I am running bind on my Linux servers for dns.
>
> in my db.domainname I put (IN TXT v=spfl a include:midwaynet.net -all)

First of all, you want quotes around that:

IN TXT "v=spfl a include:midwaynet.net -all"

Looking at midwaynet.net gives me:

midwaynet.net. 86303 IN TXT "v=spfl a include:midwaynet.net -all"

As you can see, there is an v=spfl.. which means nothing to me.. that
should be v=spf1, note, 1 not l .
furthermore, they include their own record, which will give you an
infinite chain of includes. Bad record:

http://spf.sonologic.nl/index.php?record=v%3Dspfl+a+include%3Amidwaynet.net+-all

Koen

--
K.F.J. Martens, Sonologic, http://www.sonologic.nl/
Networking, embedded systems, unix expertise, artificial intelligence.
Public PGP key: http://www.metro.cx/pubkey-gmc.asc
Wondering about the funny attachment your mail program
can't read? Visit http://www.openpgp.org/

-------
Archives at http://archives.listbox.com/spf-help/current/
Donate! http://spf.pobox.com/donations.html
To unsubscribe, change your address, or temporarily deactivate your subscription,
please go to http://v2.listbox.com/member/?listname=spf-help [at] v2

sdrenner at midwaynet

Oct 13, 2004, 8:55 AM

Post #6 of 24 (6867 views)
Permalink

RE: Help [In reply to]

12.159.225.6 is the email server.

I also changed the l to a 1

-----Original Message-----
From: owner-spf-help [at] v2
[mailto:owner-spf-help [at] v2]On Behalf Of Ward, Stuart
Sent: Wednesday, October 13, 2004 10:38 AM
To: 'spf-help [at] v2'
Subject: RE: [spf-help] Help

Do you also send outbound through the server at 12.159.225.6?

Shouldn't "IN A 12.159.225.9" be "midwaynet.net IN A 12.159.225.9"

-----Original Message-----
From: Steve J. Drenner [mailto:sdrenner [at] midwaynet]
Sent: Wednesday, October 13, 2004 11:29 AM
To: spf-help [at] v2
Subject: RE: [spf-help] Help

Yes, and here is a copy of one of the zones;

@ IN SOA midwaynet3.midwaynet.net.
hostmaster.midwaynet.net. (
2004101201 ; serial
10800 ; refresh after 3 hours
3600 ; retry after 1 hour
604800 ; expire after 1 week
86400 ; ttl of 1 day
)

NS ns1.midwaynet.net.
NS ns2.midwaynet.net.
IN MX 10 mail.midwaynet.net.
IN A 12.159.225.9

www IN A 12.159.225.9
ftp IN A 12.159.225.9
mail IN A 12.159.225.6
IN TXT "v=spfl a include:midwaynet.net -all"

-----Original Message-----
From: owner-spf-help [at] v2
[mailto:owner-spf-help [at] v2]On Behalf Of Ward, Stuart
Sent: Wednesday, October 13, 2004 10:18 AM
To: 'spf-help [at] v2'
Subject: RE: [spf-help] Help

Do you have an A record for your domain?

-----Original Message-----
From: Steve J. Drenner [mailto:sdrenner [at] midwaynet]
Sent: Wednesday, October 13, 2004 11:16 AM
To: spf-help [at] v2
Subject: [spf-help] Help

I am trying to put in the spf txt line in my DNS Server. I guess I am not
sure in what file and where in the file this should go.
I added the line to my db.domainname and then went to www.dnsreport.com and
it says that the spf file is there but when I go to
http://www.dnsstuff.com/pages/spf.htm
it says fail.

I am running bind on my Linux servers for dns.

in my db.domainname I put (IN TXT v=spfl a include:midwaynet.net -all)

Thanks for any help
Steve

-------
Archives at http://archives.listbox.com/spf-help/current/
Donate! http://spf.pobox.com/donations.html
To unsubscribe, change your address, or temporarily deactivate your
subscription,
please go to http://v2.listbox.com/member/?listname=spf-help [at] v2

Confidentiality Notice: The information contained in this e-mail and any
attachments may be legally privileged and confidential. If you are not an
intended recipient, you are hereby notified that any dissemination,
distribution or copying of this e-mail is strictly prohibited. If you have
received this e-mail in error, please notify the sender and permanently
delete the e-mail and any attachments immediately. You should not retain,
copy or use this e-mail or any attachment for any purpose, nor disclose all
or any part of the contents to any other person.

-------
Archives at http://archives.listbox.com/spf-help/current/
Donate! http://spf.pobox.com/donations.html
To unsubscribe, change your address, or temporarily deactivate your
subscription,
please go to http://v2.listbox.com/member/?listname=spf-help [at] v2

-------
Archives at http://archives.listbox.com/spf-help/current/
Donate! http://spf.pobox.com/donations.html
To unsubscribe, change your address, or temporarily deactivate your
subscription,
please go to http://v2.listbox.com/member/?listname=spf-help [at] v2

Confidentiality Notice: The information contained in this e-mail and any
attachments may be legally privileged and confidential. If you are not an
intended recipient, you are hereby notified that any dissemination,
distribution or copying of this e-mail is strictly prohibited. If you have
received this e-mail in error, please notify the sender and permanently
delete the e-mail and any attachments immediately. You should not retain,
copy or use this e-mail or any attachment for any purpose, nor disclose all
or any part of the contents to any other person.

-------
Archives at http://archives.listbox.com/spf-help/current/
Donate! http://spf.pobox.com/donations.html
To unsubscribe, change your address, or temporarily deactivate your
subscription,
please go to http://v2.listbox.com/member/?listname=spf-help [at] v2

-------
Archives at http://archives.listbox.com/spf-help/current/
Donate! http://spf.pobox.com/donations.html
To unsubscribe, change your address, or temporarily deactivate your subscription,
please go to http://v2.listbox.com/member/?listname=spf-help [at] v2

djc at cohortnet

Oct 13, 2004, 1:33 PM

Post #7 of 24 (6836 views)
Permalink

RE: Help [In reply to]

Steve,

I'm not sure if you already got the help you needed on this but had some
information to add for others that may be following the thread.

It's not clear if you send out mail as user [at] mail or
user [at] midawaynet for the From addresses. This makes a difference.
Most people are doing masquerading and email show as coming from the
domain itself and not the specific server within the domain.

This means that you want your TXT record to be for the actual domain name
and not for mail.midwaynet.net as it would be in the snippet below. The
TXT entry as it appears would be if your email messages are sent from
users [at] mail

Now since mail.midwaynet.net is your MX for the domain, what I believe you
really want to do is move the TXT record up to just above the "www IN A
..." record and replace the 'a' within your SPF to 'mx'.

The obscure thing that gets you here is that many people don't realize
that when they place a record in the file it will apply to "the last host
name specified". For the first several lines (like your NS records) this
is the host '@' which gets translated to the actual domain name using this
table (i.e. midwaynet.net). Now the TXT record where you have placed it
will apply to the 'mail' entry. Since this entry does not have a trailing
'.' it will have the domain appended to it so you end up with
'mail.midwaynet.net' that the TXT entry applies. I don't think that's
what you intended.

If that doesn't make sense than please let me know and I will try to
explain better.

Hope that helps,
-dj

On Wed, 13 Oct 2004, Steve J. Drenner wrote:

~ 12.159.225.6 is the email server.
~
~ I also changed the l to a 1
~
~ -----Original Message-----
~ From: owner-spf-help [at] v2
~ [mailto:owner-spf-help [at] v2]On Behalf Of Ward, Stuart
~ Sent: Wednesday, October 13, 2004 10:38 AM
~ To: 'spf-help [at] v2'
~ Subject: RE: [spf-help] Help
~
~
~ Do you also send outbound through the server at 12.159.225.6?
~
~ Shouldn't "IN A 12.159.225.9" be "midwaynet.net IN A 12.159.225.9"
~
~ -----Original Message-----
~ From: Steve J. Drenner [mailto:sdrenner [at] midwaynet]
~ Sent: Wednesday, October 13, 2004 11:29 AM
~ To: spf-help [at] v2
~ Subject: RE: [spf-help] Help
~
~
~ Yes, and here is a copy of one of the zones;
~
~ @ IN SOA midwaynet3.midwaynet.net.
~ hostmaster.midwaynet.net. (
~ 2004101201 ; serial
~ 10800 ; refresh after 3 hours
~ 3600 ; retry after 1 hour
~ 604800 ; expire after 1 week
~ 86400 ; ttl of 1 day
~ )
~
~ NS ns1.midwaynet.net.
~ NS ns2.midwaynet.net.
~ IN MX 10 mail.midwaynet.net.
~ IN A 12.159.225.9
~
~ www IN A 12.159.225.9
~ ftp IN A 12.159.225.9
~ mail IN A 12.159.225.6
~ IN TXT "v=spfl a include:midwaynet.net -all"
~
~ -----Original Message-----
~ From: owner-spf-help [at] v2
~ [mailto:owner-spf-help [at] v2]On Behalf Of Ward, Stuart
~ Sent: Wednesday, October 13, 2004 10:18 AM
~ To: 'spf-help [at] v2'
~ Subject: RE: [spf-help] Help
~
~
~ Do you have an A record for your domain?
~
~ -----Original Message-----
~ From: Steve J. Drenner [mailto:sdrenner [at] midwaynet]
~ Sent: Wednesday, October 13, 2004 11:16 AM
~ To: spf-help [at] v2
~ Subject: [spf-help] Help
~
~
~ I am trying to put in the spf txt line in my DNS Server. I guess I am not
~ sure in what file and where in the file this should go.
~ I added the line to my db.domainname and then went to www.dnsreport.com and
~ it says that the spf file is there but when I go to
~ http://www.dnsstuff.com/pages/spf.htm
~ it says fail.
~
~ I am running bind on my Linux servers for dns.
~
~ in my db.domainname I put (IN TXT v=spfl a include:midwaynet.net -all)
~
~ Thanks for any help
~ Steve
~
~
~ -------
~ Archives at http://archives.listbox.com/spf-help/current/
~ Donate! http://spf.pobox.com/donations.html
~ To unsubscribe, change your address, or temporarily deactivate your
~ subscription,
~ please go to http://v2.listbox.com/member/?listname=spf-help [at] v2
~
~
~ Confidentiality Notice: The information contained in this e-mail and any
~ attachments may be legally privileged and confidential. If you are not an
~ intended recipient, you are hereby notified that any dissemination,
~ distribution or copying of this e-mail is strictly prohibited. If you have
~ received this e-mail in error, please notify the sender and permanently
~ delete the e-mail and any attachments immediately. You should not retain,
~ copy or use this e-mail or any attachment for any purpose, nor disclose all
~ or any part of the contents to any other person.
~
~ -------
~ Archives at http://archives.listbox.com/spf-help/current/
~ Donate! http://spf.pobox.com/donations.html
~ To unsubscribe, change your address, or temporarily deactivate your
~ subscription,
~ please go to http://v2.listbox.com/member/?listname=spf-help [at] v2
~
~ -------
~ Archives at http://archives.listbox.com/spf-help/current/
~ Donate! http://spf.pobox.com/donations.html
~ To unsubscribe, change your address, or temporarily deactivate your
~ subscription,
~ please go to http://v2.listbox.com/member/?listname=spf-help [at] v2
~
~
~ Confidentiality Notice: The information contained in this e-mail and any
~ attachments may be legally privileged and confidential. If you are not an
~ intended recipient, you are hereby notified that any dissemination,
~ distribution or copying of this e-mail is strictly prohibited. If you have
~ received this e-mail in error, please notify the sender and permanently
~ delete the e-mail and any attachments immediately. You should not retain,
~ copy or use this e-mail or any attachment for any purpose, nor disclose all
~ or any part of the contents to any other person.
~
~ -------
~ Archives at http://archives.listbox.com/spf-help/current/
~ Donate! http://spf.pobox.com/donations.html
~ To unsubscribe, change your address, or temporarily deactivate your
~ subscription,
~ please go to http://v2.listbox.com/member/?listname=spf-help [at] v2
~
~ -------
~ Archives at http://archives.listbox.com/spf-help/current/
~ Donate! http://spf.pobox.com/donations.html
~ To unsubscribe, change your address, or temporarily deactivate your subscription,
~ please go to http://v2.listbox.com/member/?listname=spf-help [at] v2
~

-------
Archives at http://archives.listbox.com/spf-help/current/
Donate! http://spf.pobox.com/donations.html
To unsubscribe, change your address, or temporarily deactivate your subscription,
please go to http://v2.listbox.com/member/?listname=spf-help [at] v2

sdrenner at midwaynet

Oct 14, 2004, 6:34 AM

Post #8 of 24 (6832 views)
Permalink

RE: Help [In reply to]

Okay is more info as to what I have going. My mail server is the
12.159.225.6 which is mail.midwaynet.net my midwaynet.net email address go
out as user [at] midwaynet, I also have a bunch of virtual domains behind
mail.midwaynet.net example user [at] ajtsc, user [at] calvaryassembly and so
on. And all of this domain also use mail.midwaynet.net as there incoming and
outgoing smtp. I am starting to see what needs to be done, however more help
would be great.

Thanks
Steve

-----Original Message-----
From: owner-spf-help [at] v2
[mailto:owner-spf-help [at] v2]On Behalf Of DJ
Sent: Wednesday, October 13, 2004 3:34 PM
To: spf-help [at] v2
Subject: RE: [spf-help] Help

Steve,

I'm not sure if you already got the help you needed on this but had some
information to add for others that may be following the thread.

It's not clear if you send out mail as user [at] mail or
user [at] midawaynet for the From addresses. This makes a difference.
Most people are doing masquerading and email show as coming from the
domain itself and not the specific server within the domain.

This means that you want your TXT record to be for the actual domain name
and not for mail.midwaynet.net as it would be in the snippet below. The
TXT entry as it appears would be if your email messages are sent from
users [at] mail

Now since mail.midwaynet.net is your MX for the domain, what I believe you
really want to do is move the TXT record up to just above the "www IN A
..." record and replace the 'a' within your SPF to 'mx'.

The obscure thing that gets you here is that many people don't realize
that when they place a record in the file it will apply to "the last host
name specified". For the first several lines (like your NS records) this
is the host '@' which gets translated to the actual domain name using this
table (i.e. midwaynet.net). Now the TXT record where you have placed it
will apply to the 'mail' entry. Since this entry does not have a trailing
'.' it will have the domain appended to it so you end up with
'mail.midwaynet.net' that the TXT entry applies. I don't think that's
what you intended.

If that doesn't make sense than please let me know and I will try to
explain better.

Hope that helps,
-dj

On Wed, 13 Oct 2004, Steve J. Drenner wrote:

~ 12.159.225.6 is the email server.
~
~ I also changed the l to a 1
~
~ -----Original Message-----
~ From: owner-spf-help [at] v2
~ [mailto:owner-spf-help [at] v2]On Behalf Of Ward, Stuart
~ Sent: Wednesday, October 13, 2004 10:38 AM
~ To: 'spf-help [at] v2'
~ Subject: RE: [spf-help] Help
~
~
~ Do you also send outbound through the server at 12.159.225.6?
~
~ Shouldn't "IN A 12.159.225.9" be "midwaynet.net IN A 12.159.225.9"
~
~ -----Original Message-----
~ From: Steve J. Drenner [mailto:sdrenner [at] midwaynet]
~ Sent: Wednesday, October 13, 2004 11:29 AM
~ To: spf-help [at] v2
~ Subject: RE: [spf-help] Help
~
~
~ Yes, and here is a copy of one of the zones;
~
~ @ IN SOA midwaynet3.midwaynet.net.
~ hostmaster.midwaynet.net. (
~ 2004101201 ; serial
~ 10800 ; refresh after 3 hours
~ 3600 ; retry after 1 hour
~ 604800 ; expire after 1 week
~ 86400 ; ttl of 1 day
~ )
~
~ NS ns1.midwaynet.net.
~ NS ns2.midwaynet.net.
~ IN MX 10 mail.midwaynet.net.
~ IN A 12.159.225.9
~
~ www IN A 12.159.225.9
~ ftp IN A 12.159.225.9
~ mail IN A 12.159.225.6
~ IN TXT "v=spfl a include:midwaynet.net -all"
~
~ -----Original Message-----
~ From: owner-spf-help [at] v2
~ [mailto:owner-spf-help [at] v2]On Behalf Of Ward, Stuart
~ Sent: Wednesday, October 13, 2004 10:18 AM
~ To: 'spf-help [at] v2'
~ Subject: RE: [spf-help] Help
~
~
~ Do you have an A record for your domain?
~
~ -----Original Message-----
~ From: Steve J. Drenner [mailto:sdrenner [at] midwaynet]
~ Sent: Wednesday, October 13, 2004 11:16 AM
~ To: spf-help [at] v2
~ Subject: [spf-help] Help
~
~
~ I am trying to put in the spf txt line in my DNS Server. I guess I am not
~ sure in what file and where in the file this should go.
~ I added the line to my db.domainname and then went to www.dnsreport.com
and
~ it says that the spf file is there but when I go to
~ http://www.dnsstuff.com/pages/spf.htm
~ it says fail.
~
~ I am running bind on my Linux servers for dns.
~
~ in my db.domainname I put (IN TXT v=spfl a include:midwaynet.net -all)
~
~ Thanks for any help
~ Steve
~
~
~ -------
~ Archives at http://archives.listbox.com/spf-help/current/
~ Donate! http://spf.pobox.com/donations.html
~ To unsubscribe, change your address, or temporarily deactivate your
~ subscription,
~ please go to
http://v2.listbox.com/member/?listname=spf-help [at] v2
~
~
~ Confidentiality Notice: The information contained in this e-mail and any
~ attachments may be legally privileged and confidential. If you are not an
~ intended recipient, you are hereby notified that any dissemination,
~ distribution or copying of this e-mail is strictly prohibited. If you
have
~ received this e-mail in error, please notify the sender and permanently
~ delete the e-mail and any attachments immediately. You should not retain,
~ copy or use this e-mail or any attachment for any purpose, nor disclose
all
~ or any part of the contents to any other person.
~
~ -------
~ Archives at http://archives.listbox.com/spf-help/current/
~ Donate! http://spf.pobox.com/donations.html
~ To unsubscribe, change your address, or temporarily deactivate your
~ subscription,
~ please go to
http://v2.listbox.com/member/?listname=spf-help [at] v2
~
~ -------
~ Archives at http://archives.listbox.com/spf-help/current/
~ Donate! http://spf.pobox.com/donations.html
~ To unsubscribe, change your address, or temporarily deactivate your
~ subscription,
~ please go to
http://v2.listbox.com/member/?listname=spf-help [at] v2
~
~
~ Confidentiality Notice: The information contained in this e-mail and any
~ attachments may be legally privileged and confidential. If you are not an
~ intended recipient, you are hereby notified that any dissemination,
~ distribution or copying of this e-mail is strictly prohibited. If you
have
~ received this e-mail in error, please notify the sender and permanently
~ delete the e-mail and any attachments immediately. You should not retain,
~ copy or use this e-mail or any attachment for any purpose, nor disclose
all
~ or any part of the contents to any other person.
~
~ -------
~ Archives at http://archives.listbox.com/spf-help/current/
~ Donate! http://spf.pobox.com/donations.html
~ To unsubscribe, change your address, or temporarily deactivate your
~ subscription,
~ please go to
http://v2.listbox.com/member/?listname=spf-help [at] v2
~
~ -------
~ Archives at http://archives.listbox.com/spf-help/current/
~ Donate! http://spf.pobox.com/donations.html
~ To unsubscribe, change your address, or temporarily deactivate your
subscription,
~ please go to
http://v2.listbox.com/member/?listname=spf-help [at] v2
~

-------
Archives at http://archives.listbox.com/spf-help/current/
Donate! http://spf.pobox.com/donations.html
To unsubscribe, change your address, or temporarily deactivate your
subscription,
please go to http://v2.listbox.com/member/?listname=spf-help [at] v2

-------
Archives at http://archives.listbox.com/spf-help/current/
Donate! http://spf.pobox.com/donations.html
To unsubscribe, change your address, or temporarily deactivate your subscription,
please go to http://v2.listbox.com/member/?listname=spf-help [at] v2

sdrenner at midwaynet

Oct 19, 2004, 6:29 AM

Post #9 of 24 (6873 views)
Permalink

RE: Help [In reply to]

Okay this more info as to what I have going. My mail server is the
12.159.225.6 which is mail.midwaynet.net my midwaynet.net email address go
out as user [at] midwaynet, I also have a bunch of virtual domains behind
mail.midwaynet.net example user [at] ajtsc, user [at] calvaryassembly and so
on. And all of this domain also use mail.midwaynet.net as there incoming and
outgoing smtp. I am starting to see what needs to be done, however more help
would be great.

Thanks
Steve

-----Original Message-----
From: owner-spf-help [at] v2
[mailto:owner-spf-help [at] v2]On Behalf Of DJ
Sent: Wednesday, October 13, 2004 3:34 PM
To: spf-help [at] v2
Subject: RE: [spf-help] Help

Steve,

I'm not sure if you already got the help you needed on this but had some
information to add for others that may be following the thread.

It's not clear if you send out mail as user [at] mail or
user [at] midawaynet for the From addresses. This makes a difference.
Most people are doing masquerading and email show as coming from the
domain itself and not the specific server within the domain.

This means that you want your TXT record to be for the actual domain name
and not for mail.midwaynet.net as it would be in the snippet below. The
TXT entry as it appears would be if your email messages are sent from
users [at] mail

Now since mail.midwaynet.net is your MX for the domain, what I believe you
really want to do is move the TXT record up to just above the "www IN A
..." record and replace the 'a' within your SPF to 'mx'.

The obscure thing that gets you here is that many people don't realize
that when they place a record in the file it will apply to "the last host
name specified". For the first several lines (like your NS records) this
is the host '@' which gets translated to the actual domain name using this
table (i.e. midwaynet.net). Now the TXT record where you have placed it
will apply to the 'mail' entry. Since this entry does not have a trailing
'.' it will have the domain appended to it so you end up with
'mail.midwaynet.net' that the TXT entry applies. I don't think that's
what you intended.

If that doesn't make sense than please let me know and I will try to
explain better.

Hope that helps,
-dj

On Wed, 13 Oct 2004, Steve J. Drenner wrote:

~ 12.159.225.6 is the email server.
~
~ I also changed the l to a 1
~
~ -----Original Message-----
~ From: owner-spf-help [at] v2
~ [mailto:owner-spf-help [at] v2]On Behalf Of Ward, Stuart
~ Sent: Wednesday, October 13, 2004 10:38 AM
~ To: 'spf-help [at] v2'
~ Subject: RE: [spf-help] Help
~
~
~ Do you also send outbound through the server at 12.159.225.6?
~
~ Shouldn't "IN A 12.159.225.9" be "midwaynet.net IN A 12.159.225.9"
~
~ -----Original Message-----
~ From: Steve J. Drenner [mailto:sdrenner [at] midwaynet]
~ Sent: Wednesday, October 13, 2004 11:29 AM
~ To: spf-help [at] v2
~ Subject: RE: [spf-help] Help
~
~
~ Yes, and here is a copy of one of the zones;
~
~ @ IN SOA midwaynet3.midwaynet.net.
~ hostmaster.midwaynet.net. (
~ 2004101201 ; serial
~ 10800 ; refresh after 3 hours
~ 3600 ; retry after 1 hour
~ 604800 ; expire after 1 week
~ 86400 ; ttl of 1 day
~ )
~
~ NS ns1.midwaynet.net.
~ NS ns2.midwaynet.net.
~ IN MX 10 mail.midwaynet.net.
~ IN A 12.159.225.9
~
~ www IN A 12.159.225.9
~ ftp IN A 12.159.225.9
~ mail IN A 12.159.225.6
~ IN TXT "v=spfl a include:midwaynet.net -all"
~
~ -----Original Message-----
~ From: owner-spf-help [at] v2
~ [mailto:owner-spf-help [at] v2]On Behalf Of Ward, Stuart
~ Sent: Wednesday, October 13, 2004 10:18 AM
~ To: 'spf-help [at] v2'
~ Subject: RE: [spf-help] Help
~
~
~ Do you have an A record for your domain?
~
~ -----Original Message-----
~ From: Steve J. Drenner [mailto:sdrenner [at] midwaynet]
~ Sent: Wednesday, October 13, 2004 11:16 AM
~ To: spf-help [at] v2
~ Subject: [spf-help] Help
~
~
~ I am trying to put in the spf txt line in my DNS Server. I guess I am not
~ sure in what file and where in the file this should go.
~ I added the line to my db.domainname and then went to www.dnsreport.com
and
~ it says that the spf file is there but when I go to
~ http://www.dnsstuff.com/pages/spf.htm
~ it says fail.
~
~ I am running bind on my Linux servers for dns.
~
~ in my db.domainname I put (IN TXT v=spfl a include:midwaynet.net -all)
~
~ Thanks for any help
~ Steve
~
~
~ -------
~ Archives at http://archives.listbox.com/spf-help/current/
~ Donate! http://spf.pobox.com/donations.html
~ To unsubscribe, change your address, or temporarily deactivate your
~ subscription,
~ please go to
http://v2.listbox.com/member/?listname=spf-help [at] v2
~
~
~ Confidentiality Notice: The information contained in this e-mail and any
~ attachments may be legally privileged and confidential. If you are not an
~ intended recipient, you are hereby notified that any dissemination,
~ distribution or copying of this e-mail is strictly prohibited. If you
have
~ received this e-mail in error, please notify the sender and permanently
~ delete the e-mail and any attachments immediately. You should not retain,
~ copy or use this e-mail or any attachment for any purpose, nor disclose
all
~ or any part of the contents to any other person.
~
~ -------
~ Archives at http://archives.listbox.com/spf-help/current/
~ Donate! http://spf.pobox.com/donations.html
~ To unsubscribe, change your address, or temporarily deactivate your
~ subscription,
~ please go to
http://v2.listbox.com/member/?listname=spf-help [at] v2
~
~ -------
~ Archives at http://archives.listbox.com/spf-help/current/
~ Donate! http://spf.pobox.com/donations.html
~ To unsubscribe, change your address, or temporarily deactivate your
~ subscription,
~ please go to
http://v2.listbox.com/member/?listname=spf-help [at] v2
~
~
~ Confidentiality Notice: The information contained in this e-mail and any
~ attachments may be legally privileged and confidential. If you are not an
~ intended recipient, you are hereby notified that any dissemination,
~ distribution or copying of this e-mail is strictly prohibited. If you
have
~ received this e-mail in error, please notify the sender and permanently
~ delete the e-mail and any attachments immediately. You should not retain,
~ copy or use this e-mail or any attachment for any purpose, nor disclose
all
~ or any part of the contents to any other person.
~
~ -------
~ Archives at http://archives.listbox.com/spf-help/current/
~ Donate! http://spf.pobox.com/donations.html
~ To unsubscribe, change your address, or temporarily deactivate your
~ subscription,
~ please go to
http://v2.listbox.com/member/?listname=spf-help [at] v2
~
~ -------
~ Archives at http://archives.listbox.com/spf-help/current/
~ Donate! http://spf.pobox.com/donations.html
~ To unsubscribe, change your address, or temporarily deactivate your
subscription,
~ please go to
http://v2.listbox.com/member/?listname=spf-help [at] v2
~

-------
Archives at http://archives.listbox.com/spf-help/current/
Donate! http://spf.pobox.com/donations.html
To unsubscribe, change your address, or temporarily deactivate your
subscription,
please go to http://v2.listbox.com/member/?listname=spf-help [at] v2

-------
Archives at http://archives.listbox.com/spf-help/current/
Donate! http://spf.pobox.com/donations.html
To unsubscribe, change your address, or temporarily deactivate your
subscription,
please go to http://v2.listbox.com/member/?listname=spf-help [at] v2

-------
Archives at http://archives.listbox.com/spf-help/current/
Donate! http://spf.pobox.com/donations.html
To unsubscribe, change your address, or temporarily deactivate your subscription,
please go to http://v2.listbox.com/member/?listname=spf-help [at] v2

spf at metro

Oct 19, 2004, 6:38 AM

Post #10 of 24 (6876 views)
Permalink

Re: Help [In reply to]

Hi,

Seems that you can publish "v=spf1 a:mail.midwaynet.net -all" or (if you
have mail.midwaynet.net as an MX on all of the domains) "v=spf1 mx
-all".

You might want to consider publishing 'v=spf1 -all' on (sub-)domains you
never use to mail from, if you have any A records defined for them. For
example, if you explicitly have defined www.midwaynet.net in your dns,
and you never ever send mail using that domain, put 'v=spf1 -all' on
that domain. Remember, if a mail comes in to a spf checking server, the
server will look up the domain in the envelope from. If you don't
protect your subdomains, spammers may still use them..

Note that non-existing domains don't need spf protection, since it is
very common to reject mail from domains that don't exist anyway.

Koen

On Tue, Oct 19, 2004 at 08:29:02AM -0500, Steve J. Drenner wrote:
> Okay this more info as to what I have going. My mail server is the
> 12.159.225.6 which is mail.midwaynet.net my midwaynet.net email address go
> out as user [at] midwaynet, I also have a bunch of virtual domains behind
> mail.midwaynet.net example user [at] ajtsc, user [at] calvaryassembly and so
> on. And all of this domain also use mail.midwaynet.net as there incoming and
> outgoing smtp. I am starting to see what needs to be done, however more help
> would be great.
>
> Thanks
> Steve
>
> -----Original Message-----
> From: owner-spf-help [at] v2
> [mailto:owner-spf-help [at] v2]On Behalf Of DJ
> Sent: Wednesday, October 13, 2004 3:34 PM
> To: spf-help [at] v2
> Subject: RE: [spf-help] Help
>
>
> Steve,
>
> I'm not sure if you already got the help you needed on this but had some
> information to add for others that may be following the thread.
>
> It's not clear if you send out mail as user [at] mail or
> user [at] midawaynet for the From addresses. This makes a difference.
> Most people are doing masquerading and email show as coming from the
> domain itself and not the specific server within the domain.
>
> This means that you want your TXT record to be for the actual domain name
> and not for mail.midwaynet.net as it would be in the snippet below. The
> TXT entry as it appears would be if your email messages are sent from
> users [at] mail
>
> Now since mail.midwaynet.net is your MX for the domain, what I believe you
> really want to do is move the TXT record up to just above the "www IN A
> ..." record and replace the 'a' within your SPF to 'mx'.
>
> The obscure thing that gets you here is that many people don't realize
> that when they place a record in the file it will apply to "the last host
> name specified". For the first several lines (like your NS records) this
> is the host '@' which gets translated to the actual domain name using this
> table (i.e. midwaynet.net). Now the TXT record where you have placed it
> will apply to the 'mail' entry. Since this entry does not have a trailing
> '.' it will have the domain appended to it so you end up with
> 'mail.midwaynet.net' that the TXT entry applies. I don't think that's
> what you intended.
>
> If that doesn't make sense than please let me know and I will try to
> explain better.
>
> Hope that helps,
> -dj
>
>
> On Wed, 13 Oct 2004, Steve J. Drenner wrote:
>
> ~ 12.159.225.6 is the email server.
> ~
> ~ I also changed the l to a 1
> ~
> ~ -----Original Message-----
> ~ From: owner-spf-help [at] v2
> ~ [mailto:owner-spf-help [at] v2]On Behalf Of Ward, Stuart
> ~ Sent: Wednesday, October 13, 2004 10:38 AM
> ~ To: 'spf-help [at] v2'
> ~ Subject: RE: [spf-help] Help
> ~
> ~
> ~ Do you also send outbound through the server at 12.159.225.6?
> ~
> ~ Shouldn't "IN A 12.159.225.9" be "midwaynet.net IN A 12.159.225.9"
> ~
> ~ -----Original Message-----
> ~ From: Steve J. Drenner [mailto:sdrenner [at] midwaynet]
> ~ Sent: Wednesday, October 13, 2004 11:29 AM
> ~ To: spf-help [at] v2
> ~ Subject: RE: [spf-help] Help
> ~
> ~
> ~ Yes, and here is a copy of one of the zones;
> ~
> ~ @ IN SOA midwaynet3.midwaynet.net.
> ~ hostmaster.midwaynet.net. (
> ~ 2004101201 ; serial
> ~ 10800 ; refresh after 3 hours
> ~ 3600 ; retry after 1 hour
> ~ 604800 ; expire after 1 week
> ~ 86400 ; ttl of 1 day
> ~ )
> ~
> ~ NS ns1.midwaynet.net.
> ~ NS ns2.midwaynet.net.
> ~ IN MX 10 mail.midwaynet.net.
> ~ IN A 12.159.225.9
> ~
> ~ www IN A 12.159.225.9
> ~ ftp IN A 12.159.225.9
> ~ mail IN A 12.159.225.6
> ~ IN TXT "v=spfl a include:midwaynet.net -all"
> ~
> ~ -----Original Message-----
> ~ From: owner-spf-help [at] v2
> ~ [mailto:owner-spf-help [at] v2]On Behalf Of Ward, Stuart
> ~ Sent: Wednesday, October 13, 2004 10:18 AM
> ~ To: 'spf-help [at] v2'
> ~ Subject: RE: [spf-help] Help
> ~
> ~
> ~ Do you have an A record for your domain?
> ~
> ~ -----Original Message-----
> ~ From: Steve J. Drenner [mailto:sdrenner [at] midwaynet]
> ~ Sent: Wednesday, October 13, 2004 11:16 AM
> ~ To: spf-help [at] v2
> ~ Subject: [spf-help] Help
> ~
> ~
> ~ I am trying to put in the spf txt line in my DNS Server. I guess I am not
> ~ sure in what file and where in the file this should go.
> ~ I added the line to my db.domainname and then went to www.dnsreport.com
> and
> ~ it says that the spf file is there but when I go to
> ~ http://www.dnsstuff.com/pages/spf.htm
> ~ it says fail.
> ~
> ~ I am running bind on my Linux servers for dns.
> ~
> ~ in my db.domainname I put (IN TXT v=spfl a include:midwaynet.net -all)
> ~
> ~ Thanks for any help
> ~ Steve
> ~
> ~
> ~ -------
> ~ Archives at http://archives.listbox.com/spf-help/current/
> ~ Donate! http://spf.pobox.com/donations.html
> ~ To unsubscribe, change your address, or temporarily deactivate your
> ~ subscription,
> ~ please go to
> http://v2.listbox.com/member/?listname=spf-help [at] v2
> ~
> ~
> ~ Confidentiality Notice: The information contained in this e-mail and any
> ~ attachments may be legally privileged and confidential. If you are not an
> ~ intended recipient, you are hereby notified that any dissemination,
> ~ distribution or copying of this e-mail is strictly prohibited. If you
> have
> ~ received this e-mail in error, please notify the sender and permanently
> ~ delete the e-mail and any attachments immediately. You should not retain,
> ~ copy or use this e-mail or any attachment for any purpose, nor disclose
> all
> ~ or any part of the contents to any other person.
> ~
> ~ -------
> ~ Archives at http://archives.listbox.com/spf-help/current/
> ~ Donate! http://spf.pobox.com/donations.html
> ~ To unsubscribe, change your address, or temporarily deactivate your
> ~ subscription,
> ~ please go to
> http://v2.listbox.com/member/?listname=spf-help [at] v2
> ~
> ~ -------
> ~ Archives at http://archives.listbox.com/spf-help/current/
> ~ Donate! http://spf.pobox.com/donations.html
> ~ To unsubscribe, change your address, or temporarily deactivate your
> ~ subscription,
> ~ please go to
> http://v2.listbox.com/member/?listname=spf-help [at] v2
> ~
> ~
> ~ Confidentiality Notice: The information contained in this e-mail and any
> ~ attachments may be legally privileged and confidential. If you are not an
> ~ intended recipient, you are hereby notified that any dissemination,
> ~ distribution or copying of this e-mail is strictly prohibited. If you
> have
> ~ received this e-mail in error, please notify the sender and permanently
> ~ delete the e-mail and any attachments immediately. You should not retain,
> ~ copy or use this e-mail or any attachment for any purpose, nor disclose
> all
> ~ or any part of the contents to any other person.
> ~
> ~ -------
> ~ Archives at http://archives.listbox.com/spf-help/current/
> ~ Donate! http://spf.pobox.com/donations.html
> ~ To unsubscribe, change your address, or temporarily deactivate your
> ~ subscription,
> ~ please go to
> http://v2.listbox.com/member/?listname=spf-help [at] v2
> ~
> ~ -------
> ~ Archives at http://archives.listbox.com/spf-help/current/
> ~ Donate! http://spf.pobox.com/donations.html
> ~ To unsubscribe, change your address, or temporarily deactivate your
> subscription,
> ~ please go to
> http://v2.listbox.com/member/?listname=spf-help [at] v2
> ~
>
> -------
> Archives at http://archives.listbox.com/spf-help/current/
> Donate! http://spf.pobox.com/donations.html
> To unsubscribe, change your address, or temporarily deactivate your
> subscription,
> please go to http://v2.listbox.com/member/?listname=spf-help [at] v2
>
> -------
> Archives at http://archives.listbox.com/spf-help/current/
> Donate! http://spf.pobox.com/donations.html
> To unsubscribe, change your address, or temporarily deactivate your
> subscription,
> please go to http://v2.listbox.com/member/?listname=spf-help [at] v2
>
> -------
> Archives at http://archives.listbox.com/spf-help/current/
> Donate! http://spf.pobox.com/donations.html
> To unsubscribe, change your address, or temporarily deactivate your subscription,
> please go to http://v2.listbox.com/member/?listname=spf-help [at] v2

--
K.F.J. Martens, Sonologic, http://www.sonologic.nl/
Networking, embedded systems, unix expertise, artificial intelligence.
Public PGP key: http://www.metro.cx/pubkey-gmc.asc
Wondering about the funny attachment your mail program
can't read? Visit http://www.openpgp.org/

-------
Archives at http://archives.listbox.com/spf-help/current/
Donate! http://spf.pobox.com/donations.html
To unsubscribe, change your address, or temporarily deactivate your subscription,
please go to http://v2.listbox.com/member/?listname=spf-help [at] v2

jcouzens at codeshare

Nov 9, 2004, 8:42 AM

Post #11 of 24 (6899 views)
Permalink

Re: Help [In reply to]

On Tue, 2004-11-09 at 09:46 -0600, Steve J. Drenner wrote:

> My Email server is 12.159.225.6 it name is midwaynetmail I have a bunch of
> virtual domains behind this email server, they all you mail.midwaynet.net to
> send and receive as well. Here is my db.midwaynet.net file. SPF is not
> working from what I can test, what changes do I need to make here and I also
> included one of the other db files as do find out what I might need to do
> fix the rest of my domains.

[DNS_txt_answer :: dns.c->590]; Answer 1 (v=spfl a include:midwaynet.net -all ) has length 0. (36)
[DNS_txt_answer :: dns.c->592]; Answer Data: (�
) len: 0
[DNS_txt_answer :: dns.c->537]; Ignoring record not of T_TXT type. (2)
[DNS_txt_answer :: dns.c->537]; Ignoring record not of T_TXT type. (2)
[DNS_txt_answer :: dns.c->537]; Ignoring record not of T_TXT type. (1)
[DNS_txt_answer :: dns.c->537]; Ignoring record not of T_TXT type. (1)
[DNS_txt_answer :: dns.c->597]; Returning DNS response: (v=spfl a include:midwaynet.net -all )
[UTIL_free :: util.c->573]; Free address 0x805c490 by DNS_query on line 453 (dns.c)
[UTIL_free :: util.c->573]; Free address 0x805a448 by DNS_query on line 454 (dns.c)
[DNS_query :: dns.c->456]; returning rr_data: (v=spfl a include:midwaynet.net -all )
[_SPF_fetch_policy :: main.c->539]; DNS_query returned with TXT answer: (v=spfl a include:midwaynet.net -all )
[_SPF_pre_parse_policy :: main.c->774]; Returning NULL (not a valid SPF TXT record)

^^ Now why would it say this?

[UTIL_free :: util.c->573]; Free address 0x805a448 by _pprintf_dbg on line 152 (util.c)
[_SPF_fetch_policy :: main.c->551]; TXT answer does not appear to be an SPF record
[UTIL_free :: util.c->573]; Free address 0x805a448 by _pprintf_dbg on line 152 (util.c)
[UTIL_assoc_prefix :: util.c->1486]; Stored SPF_NONE (1) (1)
[UTIL_free :: util.c->573]; Free address 0x805c898 by _SPF_fetch_policy on line 555 (main.c)
[SPF_policy_main :: main.c->452]; Returning SPF_RESULT 1
SPF short result: none
SPF verbose result: policy result: (none) from rule ()
[SPF_build_header :: main.c->1565]; Prepending header string: (Received-SPF: none (nobody: domain of jcouzens [at] midwaynet does not designate permitted sender hosts))
RFC2822 header: Received-SPF: none (nobody: domain of jcouzens [at] midwaynet does not designate permitted sender hosts)

This is because your spf record has a typo! You have 'v=spfl' instead
of 'v=spf1'.

Change the l to a 1 and you are in business :-)

Cheers,

James

--
James Couzens,
Programmer
^ ( ( (
((__)) __\|/__ __|+|__ '. ___ .'
(00) (o o) (0~0) ' (> <) '
---nn-(o__o)-nn---ooO--(_)--Ooo--ooO--(_)--Ooo---ooO--(_)--Ooo---
http://libspf.org -- ANSI C Sender Policy Framework library
http://libsrs.org -- ANSI C Sender Rewriting Scheme library
-----------------------------------------------------------------
PGP: http://pgp.mit.edu:11371/pks/lookup?op=get&search=0x7A7C7DCF

-------
Archives at http://archives.listbox.com/spf-help/current/
Donate! http://spf.pobox.com/donations.html
To unsubscribe, change your address, or temporarily deactivate your subscription,
please go to http://v2.listbox.com/member/?listname=spf-help [at] v2

nobody at xyzzy

Nov 9, 2004, 10:14 AM

Post #12 of 24 (6871 views)
Permalink

Re: Help [In reply to]

Steve J. Drenner wrote:

> mail IN A 12.159.225.6
[...]
> midwaynetmail IN A 12.159.225.6

That IP has apparently something to do with your mail (?)

> @ IN A 12.159.225.9
> IN TXT "v=spfl a include:midwaynet.net -all"

Who's that, midwaynet.net. ? Don't include yourself ;-)
How about "v=spf1 a mx -all" ? The mx covers 12.159.225.6

If your mailer says HELO mail,midwaynet.net you could add
mail IN TXT "v=spf1 a -all"

[14kthemovie.com]
> NS ns2.midwaynet.net.
> IN MX 10 mail.midwaynet.net.
> IN A 12.159.225.9

Maybe add IN TXT "v=spf1 redirect=midwaynet.net" here, if you
send all MAIL FROM:<xxx [at] 14kthemovie> via mail.midwaynet.net

Bye, Frank

-------
Archives at http://archives.listbox.com/spf-help/current/
Donate! http://spf.pobox.com/donations.html
To unsubscribe, change your address, or temporarily deactivate your subscription,
please go to http://v2.listbox.com/member/?listname=spf-help [at] v2

bortzmeyer at nic

Nov 24, 2004, 8:40 AM

Post #13 of 24 (6864 views)
Permalink

Re: help [In reply to]

On Wed, Nov 24, 2004 at 11:32:52AM -0500,
SWong [at] wiley <SWong [at] wiley> wrote
a message of 25 lines which said:

> Hi all,

Hi. Great subject in the headers :-(

> Is there a way I can test it once the txt record is in? Is there an
> email address I can send, to see the difference in behavior before
> and after adding this record?

echo [at] generic-nic

-------
Archives at http://archives.listbox.com/spf-help/current/
Donate! http://spf.pobox.com/donations.html
To unsubscribe, change your address, or temporarily deactivate your subscription,
please go to http://v2.listbox.com/member/?listname=spf-help [at] v2

spf2 at kitterman

Nov 24, 2004, 8:46 AM

Post #14 of 24 (6879 views)
Permalink

RE: help [In reply to]

>-----Original Message-----
>From: owner-spf-help [at] v2
>[mailto:owner-spf-help [at] v2]On Behalf Of SWong [at] wiley
>Sent: Wednesday, November 24, 2004 11:33 AM
>To: spf-help [at] v2
>Subject: [spf-help] help

...
>is the wizard in http://spf.pobox.com/ still a good place to generate
>this txt record?
>
It's a good place to start. You should also read up on how the different
mechanisms work and make sure you understand the record. If you've got a
good grasp on how your mail gets sent, this shouldn't be hard.

http://spf.pobox.com/mechanisms.html

Also, you need to decide what domains need an SPF record (the answer is
probably all of them). The domain that appears on the right hand side of
your e-mail address @domain.com should have a record that describes all the
ways that mail can legitimately be sent for that domain. Any domain that
appears as the HELO/EHLO for your mail server(s) should have a record. This
will generally be as simple as "v=spf1 a -all". Domains that never send
mail should also have a record "v=spf1 -all".

Scott Kitterman

-------
Archives at http://archives.listbox.com/spf-help/current/
Donate! http://spf.pobox.com/donations.html
To unsubscribe, change your address, or temporarily deactivate your subscription,
please go to http://v2.listbox.com/member/?listname=spf-help [at] v2

spf2 at kitterman

Aug 22, 2005, 8:03 AM

Post #15 of 24 (6815 views)
Permalink

RE: help [In reply to]

Sorry about that. Someone went to the trouble to manually subscribe to the
list to spam it. They've been unsubscribed.

Scott K

> -----Original Message-----
> From: Emmanuel niyibigira [mailto:ema_nadi [at] yahoo]
> Sent: Monday, August 22, 2005 10:52 AM
> To: spf-help [at] v2
> Subject: [spf-help] help

Spam deleted here.

-------
Archives at http://archives.listbox.com/spf-help/current/ or
http://www.gossamer-threads.com/lists/spf/help/ (easier to search)
To unsubscribe, change your address, or temporarily deactivate your subscription,
please go to http://v2.listbox.com/member/?member_id=1311530&user_secret=8085f1ba

spf at beer

Feb 6, 2006, 9:37 AM

Post #16 of 24 (6672 views)
Permalink

Re: help [In reply to]

> Suggestions would be appreciated since the engineers are stuck and
> apparently cannot use multiple spf records:
>
> "v=spf1 a mx a:webclothes.lyris.net a:mail.webclothes.com
> a:mail2.webclothes.com a:mail3.webclothes.com a:mail.realtimerental.com
> a:wc.webclothes.com a:ddt.doublediamondtech.com a:rtr.realtimerental.com
> ip4:63.144.140.96/27 ip4:64.29.219.29 include:datareturn.com ~all"

You've got a number of duplicates in there - are they necessary?
webclothes.lyris.net, for example, is the same machine as
mail3.webclothes.com; I'd put one in and not the other.

You also cover a vast amount of IP space there - do you *really* want to
authorise anyone and everything in ip4:63.144.140.96/27 to send mail
claiming to be from you? That sounds like a strange thing to do...

How about you sit down and write down which machines genuinely can send
from this domain. I think you'll end up with a much smaller record.

Vic.

-------
Archives at http://archives.listbox.com/spf-help/current/ or
http://www.gossamer-threads.com/lists/spf/help/ (easier to search)
To unsubscribe, change your address, or temporarily deactivate your subscription,
please go to http://v2.listbox.com/member/?member_id=1311530&user_secret=cbdbbc81

nobody at xyzzy

Feb 6, 2006, 4:23 PM

Post #17 of 24 (6673 views)
Permalink

Re: help [In reply to]

Scott Hennig wrote:

> "v=spf1 a mx a:webclothes.lyris.net a:mail.webclothes.com
1 2 3 4
> a:mail2.webclothes.com a:mail3.webclothes.com
5 6
> a:mail.realtimerental.com a:wc.webclothes.com
7 8
> a:ddt.doublediamondtech.com a:rtr.realtimerental.com
9 10
> ip4:63.144.140.96/27 ip4:64.29.219.29
> include:datareturn.com ~all"
11: TILT, game over SOFTFAIL never reached

That record is invalid, you've too many mechanisms resulting
in additional DNS lookups, 10 is the limit.

> Note: there is redundancy with the wc., rtr., and ddt.,
> since their ip addresses are included in the ip4: 63.144.

Then get rid of some redundancy, I'm too lazy to check it,
but maybe the four a:whatever.webclothes.com have "similar"
IPs, e.g. all in the same /24 (that's a block of 256 IPs
from a.b.c.0 up to a.b.c.255), then say ip4:a.b.c.0/24 and
get rid of the four a:whatever.webclothes.com

Check also the include:datareturn.com record, each a / mx /
ptr / include / exists / redirect= counts against the limit.

There's nice "validator" at:
http://www.kitterman.com/spf/validate.html

It says "no record found" for datareturn.com ?!? If that's
the case you can't include it, it would result in a PermError
(as you already get it now, but for a different reason). Bye

-------
Archives at http://archives.listbox.com/spf-help/current/ or
http://www.gossamer-threads.com/lists/spf/help/ (easier to search)
To unsubscribe, change your address, or temporarily deactivate your subscription,
please go to http://v2.listbox.com/member/?member_id=1311530&user_secret=cbdbbc81

steve at teamITS

Jul 15, 2008, 1:55 PM

Post #18 of 24 (3912 views)
Permalink

RE: Help [In reply to]

Jamil Bouchaibi wrote on 7/15/2008 10:27:00 AM:

> wanted you to help me out to find why gmail, hotmail and other known
> webmail are not receiving our emails...is it because of the SPF...

Inbound mail is not relevant to SPF, or vice versa, and the lack
of an SPF record should not affect deliverability. Are your messages
being refused/bounced, sorted into those users' spam folder, or...? If
they are being bounced, what is the error message you receive?

-----
SPF FAQ: http://www.openspf.org/FAQ
Common mistakes: http://www.openspf.org/FAQ/Common_mistakes

- Steve Yates
- ITS, Inc.
- Brainstorm? No, but I had a braindrizzle once.

~ Taglines by Taglinator - www.srtware.com ~

-------------------------------------------
Sender Policy Framework: http://www.openspf.org
Modify Your Subscription: http://www.listbox.com/member/
Archives: https://www.listbox.com/member/archive/1020/=now
RSS Feed: https://www.listbox.com/member/archive/rss/1020/
Powered by Listbox: http://www.listbox.com

rick at havokmon

Jul 15, 2008, 2:11 PM

Post #19 of 24 (3918 views)
Permalink

Re: Help [In reply to]

On Tue, 2008-07-15 at 17:27 +0200, Jamil Bouchaibi wrote:
> We just installed our SMTP server (Domino) and we bought a new domain and
> asked for an MX record...well he have done evrything needed to have our mail
> server working and we succeded...Howerver, lately we noticed that gmail ,
> hotmail yahoo and other known webmail don't receive our emails, we can
> receive emails friom them but we can't send...

Your IP is blacklisted. See:
http://www.mxtoolbox.com/blacklists.aspx
and put in 80.192.160.35

Since it's a new install, are you an open relay?

-------------------------------------------
Sender Policy Framework: http://www.openspf.org
Modify Your Subscription: http://www.listbox.com/member/
Archives: https://www.listbox.com/member/archive/1020/=now
RSS Feed: https://www.listbox.com/member/archive/rss/1020/
Powered by Listbox: http://www.listbox.com

spf.pobox at logicalsolutns

Jul 15, 2008, 3:05 PM

Post #20 of 24 (3881 views)
Permalink

Re: Help [In reply to]

The IP shows as a DYNAMIC IP.

<http://www.80-192-160-35.cable.ubr01.blac.blueyonder.co.uk/>80-192-160-35.<http://www.cable.ubr01.blac.blueyonder.co.uk/>cable.<http://www.ubr01.blac.blueyonder.co.uk/>ubr01.<http://www.blac.blueyonder.co.uk/>blac.<http://www.blueyonder.co.uk/>blueyonder.<http://www.co.uk/>co.uk.

Generally speaking, dynamic IPs are not expected to host mail servers.

If your IP is actually Static, your ISP needs to contact the
block-list companies and let them know.

Typically the words 'cable' or 'dsl' in the hostname, imply DYNAMIC IP.

Another, perhaps better, option, is for you to ask your ISP to assign
a RDNS entry to your IP which relates to your Domain name.

Best Regards,
john

At 04:11 PM 7/15/2008, you wrote:

>On Tue, 2008-07-15 at 17:27 +0200, Jamil Bouchaibi wrote:
> > We just installed our SMTP server (Domino) and we bought a new domain and
> > asked for an MX record...well he have done evrything needed to
> have our mail
> > server working and we succeded...Howerver, lately we noticed that gmail ,
> > hotmail yahoo and other known webmail don't receive our emails, we can
> > receive emails friom them but we can't send...
>
>Your IP is blacklisted. See:
>http://www.mxtoolbox.com/blacklists.aspx
>and put in 80.192.160.35
>
>Since it's a new install, are you an open relay?
>
>
>
>-------------------------------------------
>Sender Policy Framework: http://www.openspf.org
>Modify Your Subscription: http://www.listbox.com/member/
>Archives: https://www.listbox.com/member/archive/1020/=now
>RSS Feed: https://www.listbox.com/member/archive/rss/1020/
>Powered by Listbox: http://www.listbox.com

-------------------------------------------
Sender Policy Framework: http://www.openspf.org
Modify Your Subscription: http://www.listbox.com/member/
Archives: https://www.listbox.com/member/archive/1020/=now
RSS Feed: https://www.listbox.com/member/archive/rss/1020/
Powered by Listbox: http://www.listbox.com

rob.macgregor at gmail

Jul 15, 2008, 3:15 PM

Post #21 of 24 (3896 views)
Permalink

Re: Help [In reply to]

On Tue, Jul 15, 2008 at 23:05, John Blazek <spf.pobox [at] logicalsolutns> wrote:
> The IP shows as a DYNAMIC IP.
>
> <http://www.80-192-160-35.cable.ubr01.blac.blueyonder.co.uk/>80-192-160-35.<http://www.cable.ubr01.blac.blueyonder.co.uk/>cable.<http://www.ubr01.blac.blueyonder.co.uk/>ubr01.<http://www.blac.blueyonder.co.uk/>blac.<http://www.blueyonder.co.uk/>blueyonder.<http://www.co.uk/>co.uk.
>
> Generally speaking, dynamic IPs are not expected to host mail servers.
>
> If your IP is actually Static, your ISP needs to contact the block-list
> companies and let them know.

Those IPs aren't static - VirginMedia (which is the combination of
Blueyonder.co.uk and ntlworld.co.uk) only offers dynamic IPs to
domestic customers.

--
Please keep list traffic on the list.

Rob MacGregor
Whoever fights monsters should see to it that in the process he
doesn't become a monster. Friedrich Nietzsche

-------------------------------------------
Sender Policy Framework: http://www.openspf.org
Modify Your Subscription: http://www.listbox.com/member/
Archives: https://www.listbox.com/member/archive/1020/=now
RSS Feed: https://www.listbox.com/member/archive/rss/1020/
Powered by Listbox: http://www.listbox.com

rick at havokmon

Jul 15, 2008, 7:57 PM

Post #22 of 24 (3889 views)
Permalink

Re: Help [In reply to]

Rob MacGregor wrote:
> On Tue, Jul 15, 2008 at 23:05, John Blazek <spf.pobox [at] logicalsolutns> wrote:
>
>> The IP shows as a DYNAMIC IP.
>>
>> <http://www.80-192-160-35.cable.ubr01.blac.blueyonder.co.uk/>80-192-160-35.<http://www.cable.ubr01.blac.blueyonder.co.uk/>cable.<http://www.ubr01.blac.blueyonder.co.uk/>ubr01.<http://www.blac.blueyonder.co.uk/>blac.<http://www.blueyonder.co.uk/>blueyonder.<http://www.co.uk/>co.uk.
>>
>> Generally speaking, dynamic IPs are not expected to host mail servers.
>>
>> If your IP is actually Static, your ISP needs to contact the block-list
>> companies and let them know.
>>
>
> Those IPs aren't static - VirginMedia (which is the combination of
> Blueyonder.co.uk and ntlworld.co.uk) only offers dynamic IPs to
> domestic customers.
>
>
I misread his IP, it's actually

81.192.160.35

but that's worse - it's blacklisted for being a known spam source. :/

Rick

-------------------------------------------
Sender Policy Framework: http://www.openspf.org
Modify Your Subscription: http://www.listbox.com/member/
Archives: https://www.listbox.com/member/archive/1020/=now
RSS Feed: https://www.listbox.com/member/archive/rss/1020/
Powered by Listbox: http://www.listbox.com

ryan at joinerlink

Apr 1, 2009, 2:26 PM

Post #23 of 24 (3015 views)
Permalink

Re: Help [In reply to]

Ok, I put it on the list, I was just trying to play it safe, but you
are right, it's public. I think your answer at the bottom is the best
thing to do which is make the name of the sending matching to be
correct. Yeah, they have nothing to do with the domain "exchange.com",
it is that name because it is an exchange server and that is what their
IT guy named it. We don't really ever send straight from exchange
servers usually, we have it forward to postfix and then let postfix
send it off. I think that is the best way to go about it.

If I wanted to allow temperrors, is there a how to on that you could
point me to? Or would it be really stupid to do this and I should just
tell them to fix their machine? (I would do it myself, but it's not my
equipment).

Thanks!

Ryan

Vic wrote:

Hey guys, Sorry for obscuring the domain name, it's hard to
troubleshoot without the appropriate info, isn't it? I didn't want
to be putting out their info on the net, just to be safe, so I'm
just emailing you guys directly, I hope that is ok, let me know if
you don't like that.

You should put this back on-list. All this information is publicly
available, so you're not exposing anything that isn't already exposed.

'SERVFAIL' error on DNS 'SPF' lookup of 'svr-exchange.sta.exchange.com

There's your core error - there is no DNS for svr-exchange.sta.exchange.com.

Do you have anything to do with exchange.com? The whois info says it
belongs to Amazon.

If you look
at the SPF/txt record for telliercompaines.com their IT guy has entered
in all the sorts of info that he could possibly enter (that he knows of)

Yeah, that's looking messy. Anything with the clauses "a mx ptr" is
usually over-specfied. But we'll get to that later.

He
did add a string for svr-exchange.sta.exchange.com, so I think that
should have worked, but becuase the DNS 'SPF' lookup fails it is because
svr-exchange.sta.exchange.com is bogus dns info because that is the name
of their internal server.

That would have been a mistake...

The biggest problem appears to be that this server is claiming to belong
to somebody else's domain, and so is showing up as a forged box. It
happens to be the SPF filter that's flagging this up - but the error is
actually nothing to do with SPF. The claimed hostname simply doesn't
resolve because it doesn't belong to the domain.

Fix the server name - call it mail.telliercompanies.com or something
similar. Put that hostname into your zone file. Then start fixing the SPF
record.

Vic.

-------------------------------------------
Sender Policy Framework: http://www.openspf.org
Modify Your Subscription: http://www.listbox.com/member/
Archives: https://www.listbox.com/member/archive/1020/=now
RSS Feed: https://www.listbox.com/member/archive/rss/1020/
Powered by Listbox: http://www.listbox.com

scott at kitterman

Apr 1, 2009, 7:38 PM

Post #24 of 24 (3017 views)
Permalink

Re: Help [In reply to]

On Wed, 01 Apr 2009 14:26:02 -0700 Ryan Joiner <ryan [at] joinerlink> wrote:
>...
>If I wanted to allow temperrors, is there a how to on that you could
>point me to? Or would it be really stupid to do this and I should just
>tell them to fix their machine? (I would do it myself, but it's not my
>equipment).
>...
>

Tell them to fix their machine, but you may want to allow temperrors too.
What are you using with postfix for SPF?

Scott K

-------------------------------------------
Sender Policy Framework: http://www.openspf.org
Modify Your Subscription: http://www.listbox.com/member/
Archives: https://www.listbox.com/member/archive/1020/=now
RSS Feed: https://www.listbox.com/member/archive/rss/1020/
Powered by Listbox: http://www.listbox.com

Index | Next | Previous | View Threaded

Interested in having your list archived? Contact Gossamer Threads