I have the following settings in my default server template:
Add SPF DNS record?: Yes, with server’s IP address
Additional SPF IPs and hostnames: empty
Additional SPF included domains: empty
Does SPF record cover all senders?: No
Additional named.conf directives for new zones: None
And it adds Named directive like mydomain.tld. IN TXT “v=spf1 a mx a:mydomain.tld ip4:xxx.xxx.xxx.xxx ?all”
.
However I often see my domain names are used for spamming. For example today morning I received bounced to me e-mail message:
Received: from 227.18.150.178.triolan.net (unknown [178.150.18.227])
by mx1.spamarrest.com (Postfix) with ESMTP id DE056E2CC20
for finan@spamarrest.com; Tue, 20 Dec 2011 13:43:59 -0600 (CST)
Received: from [104.166.129.111] ([162.185.133.128] helo=localhost.localdomain)
by web.ilnipi.net (envelope-from hwsw@mydomain.tld)
(ecelerity 3.0.22.424341 r(49957)) with ESMTP
id 42zx-93-69115; Tue, 20 Dec 2011 09:41:50 +0200
To: finan@spamarrest.com
Message-Id: 201112201944.I1634@kmbjgv.com
Date: Tue, 20 Dec 2011 09:38:13 +0200
Sender: hwsw@mydomain.tld
From: “Best-Penis” hwsw@mydomain.tld
Mime-Version: 1.0
Subject: Max-Gentleman Enlargement*Pills
Content-Type: text/plain;
charset=“us-ascii”
Content-Transfer-Encoding: quoted-printable
Received-SPF: neutral(mydomain.tld: 178.150.18.227 is neither permitted nor denied by domain of mydomain.tld)
I really need to stop this Penis Enlargment crap using my domain name, but not sure how exactly. Any ideas where and to what I need to change to make SPF stricter?
Additionally, I have a separate template for the virtual servers, which use Google Apps. For them per instructions on http://support.google.com/a/bin/answer.py?hl=en&answer=178723 I’d like to change SPF record to: “v=spf1 include:_spf.google.com ~all”. But where and how?
Thanks!