You are viewing a plain text version of this content. The canonical link for it is here.

Posted to dev@spamassassin.apache.org by bu...@bugzilla.spamassassin.org on 2009/11/04 03:07:56 UTC

[Bug 5842] Should SPF rules be "tflags net" or not?

https://issues.apache.org/SpamAssassin/show_bug.cgi?id=5842

Matthew Schumacher <ma...@aptalaska.net> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
                 CC|                            |matt.s@aptalaska.net

--- Comment #7 from Matthew Schumacher <ma...@aptalaska.net> 2009-11-03 18:07:52 UTC ---
I figured I would add a few thoughts since I'm working this issue in my mail
system now.

I think that this should be set to "tflags net" even if SA doesn't need to go
do the actual lookup.  The reason is because sometimes it's reasonable to omit
the network rules for reasons other than performance.  Suppose you want to
allow a user to authenticate and relay without worrying about RBLs, SPF, or
other network tests, but you don't want to completely omit the message from SA
either.  In this case turning off network tests works well, but only if SPF is
a network test.  If it isn't a network test, then the authenticated user will
get hit with SPF rules unless you whitelist your domain which isn't desirable
for other reasons.

schu

-- 
Configure bugmail: https://issues.apache.org/SpamAssassin/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug.