From a7ad160986089e626cfe92d82691e6aa98916550 Mon Sep 17 00:00:00 2001 From: Dennis Baaten Date: Mon, 29 Apr 2019 12:02:53 +0200 Subject: [PATCH] Updated SPF how to (markdown) --- SPF-how-to.md | 5 ++++- 1 file changed, 4 insertions(+), 1 deletion(-) diff --git a/SPF-how-to.md b/SPF-how-to.md index 97aa38e..4b6f569 100644 --- a/SPF-how-to.md +++ b/SPF-how-to.md @@ -2,4 +2,7 @@ This how to is created by Platform Internetstandards (the organization behind [internet.nl](https://internet.nl)) and is meant to provide practical information and guidance on implementing SPF. # What is SPF? -DANE is short for "**D**NS-based **A**uthentication of **N**amed **E**ntities" and is described in [RFC 6698](https://tools.ietf.org/html/rfc6698). It offers the option to use the DNSSEC infrastructure to store and sign keys and certificates that are used by TLS. So basically DANE can be used to validate provided certificates based on information (a TLSA signature) published in the DNS zone of a specific domain. +SPF is short for "**S**ender **P**olicy **F**ramework" and is described in [RFC 7208](https://tools.ietf.org/html/rfc7208). It offers domain owners that use their domains for sending e-mail, the possibility to use the DNSSEC infrastructure to publish which hosts (mail servers) are authorized to use their domain names in the "MAIL FROM" and "HELO" identities. So basically SPF is a whitelist which lists all servers that are allowed to send e-mail on behalf of a specific domain. The receiving mail server may use the information (a SPF record) published in the DNS zone of a specific mail sending domain. + +# Why use SPF? +