15 Dec
2009
15 Dec
'09
10:14 p.m.
On Tue, 15 Dec 2009 11:51:29 -0600, Eric J Esslinger wrote:
B. Set spf -all, for those who bother to check that to stop inbound mail from your domain.
You might as well also add a DKIM ADSP policy with "dkim=discardable". Similar to your SPF policy, it announces that no unsigned mail (or no mail at all in your case) should come from this domain. But DKIM does not suffer from the problems SPF causes with email forwarding (see recent NANOG thread on that topic). -Phil