• The APS Catalog has been deprecated and removed from all Plesk Obsidian versions.
    Applications already installed from the APS Catalog will continue working. However, Plesk will no longer provide support for APS applications.
  • Please be aware: with the Plesk Obsidian 18.0.78 release, the support for the ngx_pagespeed.so module will be deprecated and removed from the sw-nginx package.

Tweak to make SPF test look at "From" header?

H

HostaHost

Silver Pleskian
I'm curious if there are any changes that can be made to the SPF filter, or spam assassin, to have the "From" header of the message investigated for SPF pass/fail in addition to the Return-Path? We have customers with explicit (-all) spf records still seeing forged emails coming in claiming to be from their domain because the sender used their own return-path but forged the From header.
 
Actually SPF takes all parameters from SMTP session. SPF test works before the From or Reply-TO received. It takes MAIL FROM: from SMTP session, makes DNS query to the domain, and checks IP address came from mail.
Can you show some kind of samples?
 
You must log in or register to reply here.

Similar threads

nethubonline
Forwarded to devs Possible DMARC Bypass - Spoofed MAILER-DAEMON Return-Path Not Rejected
Replies
10
Views
3K
Sebahat.hadzhi
Sebahat.hadzhi
E
Question DMARC p=reject not rejecting spoofed inbound mail (MAILER-DAEMON sender)
Replies
3
Views
2K
enduser
E
M
Resolved Steps to understand why emails are being sent from localhost instead of domain?
Replies
6
Views
2K
MHC_1
M
M
Issue SPF check fails (Reason=Mechanism) due to combination of local rule and redirect
Replies
2
Views
2K
AYamshanov
AYamshanov
M
Issue Sending Email from a subdomain - Relay Access Denied
Replies
6
Views
2K
MHC_1
M
Back
Top