I am using Virtualmin GPL and I have no problems with creating SPF records for the domains hosted in the server. What about blocking incoming emails that do not match the SPF records set by their owners? Is virtualmin do it that or something must be installed on top?
My virtualmin was installed via the script on a minimal Centos 6.4
I put the server IP, as a sender an invalid email address (from a domain which IS hosted inside), and as the recipient a valid email address of a domain hosted inside the server.
The sender’s domain has SPF record which allows only the IP of the server and no others.
The email was sent and received at the destination mailbox. Shouldn’t this be disallowed ??
This is the full content of that file (excluding the initial comments):
# RelayCountry - add metadata for Bayes learning, marking the countries
# a message was relayed through
#
# Note: This requires the IP::Country::Fast Perl module
#
# loadplugin Mail::SpamAssassin::Plugin::RelayCountry
URIDNSBL - look up URLs found in the message against several DNS
blocklists.
loadplugin Mail::SpamAssassin::Plugin::URIDNSBL
Hashcash - perform hashcash verification.
loadplugin Mail::SpamAssassin::Plugin::Hashcash
SPF - perform SPF verification.
loadplugin Mail::SpamAssassin::Plugin::SPF
This is as per default installation. I have not made any changes.
Is it correct/enough?
The below is true on CentOS 5 & 6, I am not sure about other OSes …
After much head-scratching I have figured out why SPF isn’t working, if you run spamassassin in debug mode on a test message, it tries to do the SPF check, but their is a missing perl SPF module. I grabbed them from another repository and poof SPF works perfectly.
Also on another note, is something wrong with the forum/site, everything in the forums appears in italics for me.