Re: [exim] Preventing Sender Forgery .

Top Page
Delete this message
Reply to this message
Author: Ian Eiloart
Date:  
To: Marc Perkel
CC: exim-users
Subject: Re: [exim] Preventing Sender Forgery .


--On 22 August 2008 10:46:55 -0700 Marc Perkel <marc@???> wrote:

> I disagree. SPF is a broken technology and no one should use it. It does
> nothing to prevent spam and it creates false positives. It breaks email
> forwarding.


That entirely depends *how* you use it.


>
> The biggest thing you can do you reduce sender forgery is to eliminate
> wildcard domains and reject invalid users at connect time. Forgers like
> to spoof domains that will pass anything when queried with sender
> verification.
>
> Dan_Mitton@??? wrote:
>> Check out SPF - Sender Policy Framework:
>>
>> http://www.openspf.org/
>>
>> Exim has some configuration options you need to set when you build exim
>> to enable spf.
>>
>> Dan
>>
>>
>>
>> Sent by:        exim-users-bounces@???
>> To:     exim-users@???
>> cc:      (bcc: Dan Mitton/YD/RWDOE)
>> Subject:        [exim] Preventing Sender Forgery .
>> LSN: Not Relevant
>> User Filed as: Not a Record

>>
>> Hi all ,
>>
>> How can I prevent Sender Forgery for my server. Alot of people in my
>> company are getting e-mails from themselves. Any Ideas will be greatly
>> appreciated.
>>
>> Best Regards,
>>
>> Jeremy
>>




--
Ian Eiloart
IT Services, University of Sussex
x3148