https://bugs.exim.org/show_bug.cgi?id=1399
Graeme Fowler <graeme@???> changed:
What |Removed |Added
----------------------------------------------------------------------------
CC| |graeme@???
--- Comment #2 from Graeme Fowler <graeme@???> ---
Hi Sebastian
My reading of the SPF specification is that a domain with multiple TXT/SPF
records is not in compliance, as it can result in multiple records being
selected when only one is expected.
http://tools.ietf.org/html/rfc4408#section-3.1.2 states:
3.1.2. Multiple DNS Records
A domain name MUST NOT have multiple records that would cause an
authorization check to select more than one record. See Section 4.5
for the selection rules.
As such, I'm not 100% sure that either the library or the Exim code are at
fault; rather the domains themselves with multiple records need bringing into
line.
The example you give with neos.io is a particularly good example as it contains
two conflicting policies - one with a neutral fail, and one with a soft fail.
Although there's not much difference between the two, some applications do
handle them differently - so which one do we pick?
Graeme
--
You are receiving this mail because:
You are on the CC list for the bug.
