cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

SPF/SRS when using redirects

spraxyt
Resting Legend
Posts: 10,063
Thanks: 674
Fixes: 75
Registered: ‎06-04-2007

SPF/SRS when using redirects

‎12-09-2016 3:05 PM

I set up an SPF record for a domain I have at 123-reg and I've confirmed mail to my Plusnet/Force9 address bounces with 550 SPF Validation Failed if the server is not approved (but gets through if it is).

However if I send the message using an approved server to a Force9 address that redirects elsewhere, the redirect works but the envelope address isn't rewritten. To me that implies Plusnet haven't implemented SRS. Sad

David
Message 1 of 9
(1,716 Views)
0 Thanks
8 REPLIES 8
MisterW
Superuser
Superuser
Posts: 14,715
Thanks: 5,503
Fixes: 393
Registered: ‎30-07-2007

Re: SPF/SRS when using redirects

‎12-09-2016 3:31 PM

Very likelyRoll_eyes

Superusers are not staff, but they do have a direct line of communication into the business in order to raise issues, concerns and feedback from the community.

Message 2 of 9
(1,707 Views)
MisterW
Superuser
Superuser
Posts: 14,715
Thanks: 5,503
Fixes: 393
Registered: ‎30-07-2007

Re: SPF/SRS when using redirects

‎12-09-2016 3:47 PM - edited ‎12-09-2016 3:48 PM

When you think about it, implementing SRS for the redirected outgoing mail isn't difficult. The REAL problem is that now you are responsible for handling any delivery failure from the destination, extracting the orginal sender from the (rewritten) return-path and passing the failure back to them. If you're not careful then, with a simple redirect/forward, the delivery failure is treated as any other message and redirected...looping foreverGrin

Superusers are not staff, but they do have a direct line of communication into the business in order to raise issues, concerns and feedback from the community.

Message 3 of 9
(1,698 Views)
0 Thanks
spraxyt
Resting Legend
Posts: 10,063
Thanks: 674
Fixes: 75
Registered: ‎06-04-2007

Re: SPF/SRS when using redirects

‎12-09-2016 4:25 PM

Wouldn't the bounce handling procedure of leaving Return-path empty ( <> ) cope with potential looping?

On Plusnet I've confirmed that the SPF check is also done for redirects so if SPF validation fails the message won't be redirected/forwarded. Thus any failure after forwarding shouldn't be SPF related.

David
Message 4 of 9
(1,685 Views)
0 Thanks
bobpullen
Community Gaffer
Community Gaffer
Posts: 16,887
Thanks: 4,979
Fixes: 316
Registered: ‎04-04-2007

Re: SPF/SRS when using redirects

‎12-09-2016 5:04 PM

Looks like you're right Undecided

Bob Pullen
Plusnet Product Team
If I've been helpful then please give thanks ⤵
Message 5 of 9
(1,675 Views)
0 Thanks
MisterW
Superuser
Superuser
Posts: 14,715
Thanks: 5,503
Fixes: 393
Registered: ‎30-07-2007

Re: SPF/SRS when using redirects

‎12-09-2016 5:08 PM

Wouldn't the bounce handling procedure of leaving Return-path empty ( <> ) cope with potential looping?

Possibly. I think the main problem is that without implementing SRS then the redirector/forwarder doesn't have to think about failures, they will go back to the original sender. With SRS they may have to do something.

Superusers are not staff, but they do have a direct line of communication into the business in order to raise issues, concerns and feedback from the community.

Message 6 of 9
(1,671 Views)
0 Thanks
MisterW
Superuser
Superuser
Posts: 14,715
Thanks: 5,503
Fixes: 393
Registered: ‎30-07-2007

Re: SPF/SRS when using redirects

‎12-09-2016 5:11 PM

@bobpullen wrote:

Looks like you're right Undecided

Oops!, pot, kettle and black come to mindWink

Superusers are not staff, but they do have a direct line of communication into the business in order to raise issues, concerns and feedback from the community.

Message 7 of 9
(1,665 Views)
spraxyt
Resting Legend
Posts: 10,063
Thanks: 674
Fixes: 75
Registered: ‎06-04-2007

Re: SPF/SRS when using redirects

‎12-09-2016 5:26 PM

As things stand Plusnet will redirect only if SPF validation passes. However if the next hop does an SPF check it will fail unless the envelope from address has been rewritten. Since Plusnet have implemented SPF they should also implement SRS (and handle bounces).

David
Message 8 of 9
(1,657 Views)
0 Thanks
MisterW
Superuser
Superuser
Posts: 14,715
Thanks: 5,503
Fixes: 393
Registered: ‎30-07-2007

Re: SPF/SRS when using redirects

‎12-09-2016 5:47 PM

Looks like 'can open, worms all over the table!' to meGrin

Superusers are not staff, but they do have a direct line of communication into the business in order to raise issues, concerns and feedback from the community.

Message 9 of 9
(1,648 Views)
0 Thanks