Products
Applications
Support
Company
How To Buy
Skip to main content (Press Enter).
Sign in
Skip auxiliary navigation (Press Enter).
Register
Skip main navigation (Press Enter).
Toggle navigation
Home
My Communities
Communities
All Communities
Application Networking and Security
Carbon Black
Enterprise Software
Mainframe Software
Symantec Enterprise
Tanzu
VMware {code}
VMware Cloud Foundation
Blogs
All Blogs
Enterprise Software
Mainframe Software
Symantec Enterprise
VMware
Events
VMware Explore 2025
All Events
Enterprise Software
Mainframe Software
Symantec Enterprise
VMware
Water Cooler
Betas
Flings
Education
Groups
Enterprise Software
Mainframe Software
Symantec Enterprise
VMware
Members
Messaging Gateway
Private Community
View Only
Community Home
Threads
15.5K
Library
347
Blogs
0
Members
909
Back to discussions
Expand all
|
Collapse all
sort by most recent
sort by thread
SPF softfail verdict behaviour
Migration User
Jun 21, 2010 07:18 PM
Hi there, Can anyone tell me what verdict the Brightmail reaches when a domain has a softfail (~all) ...
Migration User
Jun 21, 2010 07:35 PM
Think I just found a KB showing that the email is allowed: http://service1.symantec.com/SUPPORT/ent-gate.nsf/docid/2008060312334254 ...
1.
SPF softfail verdict behaviour
Recommend
Migration User
Posted Jun 21, 2010 07:18 PM
Reply
Reply Privately
Options Dropdown
Hi there,
Can anyone tell me what verdict the Brightmail reaches when a domain has a softfail (~all) instead of a hardfail.
Does it still class the mail as failing the sender authentication lookup?
Or does it let it straight through?
2.
RE: SPF softfail verdict behaviour
Recommend
Migration User
Posted Jun 21, 2010 07:35 PM
Reply
Reply Privately
Options Dropdown
Think I just found a KB showing that the email is allowed:
http://service1.symantec.com/SUPPORT/ent-gate.nsf/docid/2008060312334254
"Domains that have published their spf records with the last directive of "~all" (SoftFail) or "?all" (Neutral) will not trigger the SPF Authentication policy action when spoofed. Only those domains that have published their spf records with the last directive of "-all" (hard Fail) will trigger the SPF Authentication policy action when spoofed. This behavior is by design and in compliance with SPF specification."
×
New Best Answer
This thread already has a best answer. Would you like to mark this message as the new best answer?
Copyright 2019. All rights reserved.
Powered by Higher Logic