• Inviting everyone who uses WordPress management tools in Plesk
    The Plesk team is conducting a 60-minute research session that includes an interview and a moderated usability test.
    To participate, please use this link .
    Your experience will help shape product decisions and ensure the tools better support real-world use cases.

Tweak to make SPF test look at "From" header?

H

HostaHost

Silver Pleskian
I'm curious if there are any changes that can be made to the SPF filter, or spam assassin, to have the "From" header of the message investigated for SPF pass/fail in addition to the Return-Path? We have customers with explicit (-all) spf records still seeing forged emails coming in claiming to be from their domain because the sender used their own return-path but forged the From header.
 
Actually SPF takes all parameters from SMTP session. SPF test works before the From or Reply-TO received. It takes MAIL FROM: from SMTP session, makes DNS query to the domain, and checks IP address came from mail.
Can you show some kind of samples?
 
You must log in or register to reply here.

Similar threads

E
Question DMARC p=reject not rejecting spoofed inbound mail (MAILER-DAEMON sender)
Replies
3
Views
1K
enduser
E
M
Resolved Steps to understand why emails are being sent from localhost instead of domain?
Replies
6
Views
1K
MHC_1
M
M
Issue SPF check fails (Reason=Mechanism) due to combination of local rule and redirect
Replies
2
Views
1K
AYamshanov
AYamshanov
M
Issue Sending Email from a subdomain - Relay Access Denied
Replies
6
Views
2K
MHC_1
M
K
Resolved How to control smtp.mailfrom in mails sent from Plesk?
Replies
3
Views
3K
Kroptokin
K
Back
Top