From 25a8a22d3eed93e5268499e44dee22ef46c91a79 Mon Sep 17 00:00:00 2001 From: Dennis Baaten Date: Mon, 29 Apr 2019 12:20:50 +0200 Subject: [PATCH] Updated SPF how to (markdown) --- SPF-how-to.md | 1 + 1 file changed, 1 insertion(+) diff --git a/SPF-how-to.md b/SPF-how-to.md index 3135a4a..6cdb416 100644 --- a/SPF-how-to.md +++ b/SPF-how-to.md @@ -5,4 +5,5 @@ This how to is created by the Dutch Internet Standards Platform (the organizatio SPF is short for "**S**ender **P**olicy **F**ramework" and is described in [RFC 7208](https://tools.ietf.org/html/rfc7208). It offers domain owners that use their domains for sending e-mail, the possibility to use the DNSSEC infrastructure to publish which hosts (mail servers) are authorized to use their domain names in the "MAIL FROM" and "HELO" identities. So basically SPF is a whitelist which lists all servers that are allowed to send e-mail on behalf of a specific domain. The receiving mail server may use the information (a SPF record) published in the DNS zone of a specific mail sending domain. # Why use SPF? +Our current e-mail infrastructure was originally designed for any mail sending host to use any DNS domain name it wants. The authenticity of the sending mail server cannot be deterimined, which makes it easy for random third parties to make use of a domain name with possibly a malicious intent. This increases the risk of processing e-mail since the intentions of the sender (host) are uncertain. SPF can help the fight against spam and other kinds of unwanted e-mail be offering a way of authenticating the sending mail server.