Re: [exim] Preventing Sender Forgery .

Top Page
Delete this message
Reply to this message
Author: Marc Perkel
Date:  
CC: exim-users
Subject: Re: [exim] Preventing Sender Forgery .
I disagree. SPF is a broken technology and no one should use it. It does
nothing to prevent spam and it creates false positives. It breaks email
forwarding.

The biggest thing you can do you reduce sender forgery is to eliminate
wildcard domains and reject invalid users at connect time. Forgers like
to spoof domains that will pass anything when queried with sender
verification.

Dan_Mitton@??? wrote:
> Check out SPF - Sender Policy Framework:
>
> http://www.openspf.org/
>
> Exim has some configuration options you need to set when you build exim to
> enable spf.
>
> Dan
>
>
>
> Sent by:        exim-users-bounces@???
> To:     exim-users@???
> cc:      (bcc: Dan Mitton/YD/RWDOE)
> Subject:        [exim] Preventing Sender Forgery .
> LSN: Not Relevant
> User Filed as: Not a Record

>
> Hi all ,
>
> How can I prevent Sender Forgery for my server. Alot of people in my
> company are getting e-mails from themselves. Any Ideas will be greatly
> appreciated.
>
> Best Regards,
>
> Jeremy
>
>