-
Notifications
You must be signed in to change notification settings - Fork 161
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
[Feature Request ] SPF HELO #35
Comments
Might be best to run it as a separate function as sometimes the headers are from after the email was delivered to the users mailbox. |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Hello,
RFC 7208 section 2.3 specifies the following
It is RECOMMENDED that SPF verifiers not only check the "MAIL FROM" identity but also separately check the "HELO" identity by applying the check_host() function (Section 4) to the "HELO" identity as the <sender>.
Basically they recommend running against the sending server ehlo/help and the the MAIL FROM. I know of at least three mail gateways that employ this, one of which is Trend Micro.
No rush, and can wait until after spf validation for Mail From is setup
Regards
The text was updated successfully, but these errors were encountered: