-----BEGIN PGP SIGNED MESSAGE-----
On 2014-11-25 09:44, Per Jessen wrote:
It looks like the Telefonica host rejects due to a
failing SPF check.
My guess is that the sender's SPF record does not include the opensuse
forwarding host. (obviously). Forwarding of mails is a typical problem
with SPF. Usually the forwarding server is advised to implement SRS.
That's what I'm starting to think. My ISP has probably switched to a strict SPF
check, and that the sender ISP requests hard failure, no softfail.
In that case, there is nothing that opensuse.org
I found in google two ways to check it:
nslookup -q=txt gmx.com
txt host localhost
and I get:
;; ANSWER SECTION:
. 83796 IN TXT "v=spf1 ip4:22.214.171.124/23
ip4:126.96.36.199/26 ip4:188.8.131.52/26 ip4:184.108.40.206/25 ip4:220.127.116.11/24
ip4:18.104.22.168/27 ip4:22.214.171.124/26 ip4:126.96.36.199/24 ip4:188.8.131.52/28 -all"
. 83796 IN TXT
And looking at the wikipedia:
ALL Matches always; used for a default result like -all for all IPs not matched by prior
- - (minus) for FAIL, the mail should be rejected (see below).
My reading is that the sender ISP requests hard fail for IPs not in that list, and my ISP
triggers the failure, because redirection breaks SPF, so there is nothing to
tell the administrators here because there is nothing they can do
Am I reading it right, or am I mistaken?
The only thing they can do is create something else instead of a redirector, like a real
For instance, ieee.org
had a redirector service, and they switched about a year ago to
google services with real email instead, which avoids this problem.
And that would be indeed a matter for this mail list, I believe. :-?
Cheers / Saludos,
Carlos E. R.
(from 13.1 x86_64 "Bottle" at Telcontar)
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.22 (GNU/Linux)
-----END PGP SIGNATURE-----
To unsubscribe, e-mail: opensuse-project+unsubscribe(a)opensuse.org
To contact the owner, email: opensuse-project+owner(a)opensuse.org