Membership is FREE, giving all registered users unlimited access to every DNForum feature, resource, and tool! Optional membership upgrades unlock exclusive benefits like profile signatures with links, banner placements, appearances in the weekly newsletter, and much more - customized to your membership level!
Site Direct helps you monetize your domain portfolios with ease

legal Domain names without SPF = Email Spoofers playground!

Status
Not open for further replies.
S

skylark

Level 3
Legacy Platinum Member
Joined
Apr 28, 2002
Messages
65
Reaction score
1
Unstoppable Domains
S

skylark

Level 3
Legacy Platinum Member
Joined
Apr 28, 2002
Messages
65
Reaction score
1
Example: (For domain names not using email)
In DNS -
myvaluabledomain.com IN TXT "v=spf1 -all"
 
C

Commerce

DNF Member
Legacy Exclusive Member
Joined
Dec 31, 2005
Messages
482
Reaction score
52
skylark -

Good advice, although it is also good practice to implement SPF for all of your domains. Pretty straight forward thing to do.

The validator you mentioned (http://www.kitterman.com/spf/validate.html) is indeed an excellent one - Scott has been involved with the SPF standards track since pretty close to the very beginning and is the draft author / editor for the SPFbis (kind of a cleaned up final polished version of the experimental SPF standard document so many have already implemented), so he certainly knows his stuff where it comes to SPF.

For most folks, using the -all parameter should work, however, you might want to be aware that some folks (enom and the associated registries powered by enom come to mind) will tend to send renewal messages using your email address with them as the MAIL FROM address in the message envelope. Doing that is a rather poor idea, because it causes any SPF aware email server to reject mail addressed that way (after all, that is the very behavior SPF was invented to combat) unless (perhaps) you include the enom mail servers as having the right to send email from the domain(s) you use for email. Not exactly a best practice for a variety of reasons. Cannot entirely figure why they elected to send out messages this way. SPF has been around since the mid 2000s, so you would think they might want to address that issue by sending from some address like domainrenewals at the enom.com domain or one of their associated registry domain names in the MAIL FROM envelope header, if they have not done so already. I lost a name in the last year which I was fortunately able to pick back up after it was finally released because of this.

Finally, if you like SPF, you might also want to look into DMARC - http://www.dmarc.org/

Best,

Commerce
 
S

skylark

Level 3
Legacy Platinum Member
Joined
Apr 28, 2002
Messages
65
Reaction score
1
Interesting to know this was not around until the mid 2000. Good to know about the Enom emails although I ALWAYS renew my domains based on my own spreadsheet timeline - the enom email problem is just another reason not to depend on email for anything truly vital.



Commerce said:
skylark -

Good advice, although it is also good practice to implement SPF for all of your domains. Pretty straight forward thing to do.

The validator you mentioned (http://www.kitterman.com/spf/validate.html) is indeed an excellent one - Scott has been involved with the SPF standards track since pretty close to the very beginning and is the draft author / editor for the SPFbis (kind of a cleaned up final polished version of the experimental SPF standard document so many have already implemented), so he certainly knows his stuff where it comes to SPF.

For most folks, using the -all parameter should work, however, you might want to be aware that some folks (enom and the associated registries powered by enom come to mind) will tend to send renewal messages using your email address with them as the MAIL FROM address in the message envelope. Doing that is a rather poor idea, because it causes any SPF aware email server to reject mail addressed that way (after all, that is the very behavior SPF was invented to combat) unless (perhaps) you include the enom mail servers as having the right to send email from the domain(s) you use for email. Not exactly a best practice for a variety of reasons. Cannot entirely figure why they elected to send out messages this way. SPF has been around since the mid 2000s, so you would think they might want to address that issue by sending from some address like domainrenewals at the enom.com domain or one of their associated registry domain names in the MAIL FROM envelope header, if they have not done so already. I lost a name in the last year which I was fortunately able to pick back up after it was finally released because of this.

Finally, if you like SPF, you might also want to look into DMARC - http://www.dmarc.org/

Best,

Commerce
Click to expand...
 
Status
Not open for further replies.

Who has viewed this thread (Total: 1) View details

Who has watched this thread (Total: 2) View details

Similar threads

DNW
Domain Name Wire Connecting domains to services – DNW Podcast #499
Replies
0
Views
163
DNW
DNW
it.com
it.com How Not to Lose Your Domain Name: Tips for Businesses
Replies
0
Views
511
it.com
it.com
it.com
it.com Domain Parking: What It Is and How to Use It
Replies
0
Views
899
it.com
it.com
Sarfraz S
WEEK IN DOMAINING # 50
Replies
0
Views
158
Sarfraz S
Sarfraz S
it.com
it.com How to Fix “Your Connection To This Site Is Not Secure” Issue: A Guide for Website Owners
Replies
0
Views
606
it.com
it.com
Domain Summit Europe 2025

The Rule #1

Do not insult any other member. Be polite and do business. Thank you!

Members Online

Total: 904 (members: 3, guests: 901)
IT.com

Premium Members

Sedo Global Domain Report
Unstoppable Domains
dot Hiphop

Latest Comments

Upcoming events

Our Mods' Businesses

*the exceptional businesses of our esteemed moderators

Top Bottom