My company sends to some clients' automated notification e-mails with rewritten source email address to xxx@ClientA.com,...
instead of the real source, email@example.com. With the introduction of Sender Policy Framework (SPF) for anti-spam proposed to take place in October, what steps do we need to take to ensure this sort of "proxy" email notification will be accepted properly? To use SPF, your client will need to add a TXT record for clientA.com describing the hosts that can legitimately send mail addressed from clientA.com. SPF is flexible enough to allow your client to specify that your mail servers may send mail from clientA.com. He can do that in one of several ways:
This allows any mail server whose name ends in the specified domain name to send mail from the client's domain name.
To designate multiple options, just use more than one option, each with an option argument, separated by whitespace. For example, "a:mail1.hsntech.com a:mail2.hsntech.com".
There's more to the TXT records that SPF uses: the records start with "v=spf1", for example. For an excellent web-based wizard that will walk you through the process of determining the right TXT record for your client to use, see http://spf.pobox.com/.
Dig Deeper on IP Networking
Related Q&A from Cricket Liu
If you take some simple steps, you can help prevent advanced persistent threats from plaguing your network. Continue Reading
How to add an SPF record on Windows 2000 DNS Server to counter "Your domain does not have an SPF record" warning message. Continue Reading
Networking expert Cricket Liu explains what causes this error: ipnathlp event 31002 and why it is bad for TCP/IP. Continue Reading