Flash Games
 FAQ   Search   Memberlist   Usergroups   Register  Profile   Log in to check your private messages   Log in 

Help preventing Spam: Add a SPF-Record on your domain!



 
Post new topic   Reply to topic  
   DEVPPL Forum Index -> Webhosting Services Forum
View previous topic :: View next topic  
Author Message
leonard
100+ Club


Joined: 18 Dec 2007
Posts: 147
Location: Switzerland
PostPosted: Fri Mar 07, 2008 11:07 am    Post subject: Help preventing Spam: Add a SPF-Record on your domain! Reply with quote
Hi all

As you surely know, email-spamming is becoming a big problem.
With the new SPF (Sender Policy Framework) standard, every domain owner can now contribute in reducing spam.

SPF is an email rule for your domain.
If you do not send emails from your domain, you can announce that by doing this:
Go to your domain-name services at your DNS-provider and add the following TXT record:
v=spf1 -all

Why does this help?
Spammers usually send emails from infected PC's (or open-relay MTAs), lets use the IP-example 111.111.111.111 (= IP address of the sending spammer).
But they send the spam for any email address, example the spammer pretends to be you@yourdomain.com.
The receiving mailserver (MTA) however does not know that IP-address '111.111.111.111' is not authorized to send emails from @yourdomain.com.
However if you set an SPF policy for yourdomain.com, the receiving mailserver can check the policy and will see that nobody is allowed to send emails in the name of yourdomain.com. The receiving mailserver is then able to "obay" the email-policy of your domain and knows it can reject the spam-mail.

If you send emails from your domain, you may add the following TXT record to your domain-name:
v=spf1 +a +mx -all

This rule says:
    -> v=spf1: this marks the start of the SPF-rule

    -> +a: If the IP-Address of the sending MTA is the one of your domain (DNS A-Record) the mail should be accepted.

    -> +mx: If the IP-Address of the sending MTA is one of your defined MX-servers (DNS MX-Record), the mail should be accepted.

    -> -all: If the IP-Address of the sending MTA is any other than listed above, the mail should be rejected.
    With this "-all" you can block unauthorized MTA's sending emails from your domain.
    Of course this only works, if the receiving MTA checks your SPF-rule. My mailserver for instance does.


It only costs a few minutes to make an SPF policy for your domain.
It is also in your own interest that no spam is sent from (e.g. in the name of) your domain. For more details see http://www.openspf.org

If anything is unclear pls ask, I will be happy to answer.
Prevent spam!

cheers!
- leonard
Back to top
View user's profile Send private message Visit poster's website
Display posts from previous:   
Post new topic   Reply to topic    DEVPPL Forum Index -> Webhosting Services Forum All times are GMT + 1 Hour
Page 1 of 1

 
  
Welcome to DEVPPL.com
You are not logged in, which means that you can't post in the forums.
Click here to Register

If you are a current member here on DEVPPL, please login below:

User: Pass:
Log me on automatically each visit:

 


Powered by phpBB © 2001, 2005 phpBB Group - Modified by DEVPPL

Flash Games - Sitemap