Re: [exim] dkim verification

--On 20 September 2008 14:30:40 +0200 Magnus Holmgren
<holmgren@???> wrote:

>
> The server that checks and enforces SPF must know where forwarded mail
> can come from, which is at least theoretically possible since the
> forwardings must be set up by the recipients.

So, if you're checking SPF records, and rejecting email that fails an SPF
test (there are other things that you can do with SPF), then you should
offer your end users the opportunity to whitelist a forwarding service that
they use.

The problem lies in communicating with your users, who aren't likely to
know that you do that, or why it's important. It's a reasonable technical
solution, and only you can assess the social implications.

--
Ian Eiloart
IT Services, University of Sussex
x3148