-
-
Notifications
You must be signed in to change notification settings - Fork 1.8k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We鈥檒l occasionally send you account related emails.
Already on GitHub? Sign in to your account
bug report: Postfix reject email with valid SPF but unresolvable hostname #3716
Comments
What Postfix does makes perfect sense: it rejects the SPF does not change this fact, i.e. it is irrelevant here. |
Is it okay to reject an email that does not have a valid A, AAAA or MX record, even if the email passed the SPF check? |
You can probably change the Postfix configuration to accept such e-mails (don't ask me how though, the internet knows better which of the many options that is), but I highly recommend not disabling it! This check makes perfect sense, and I'd keep it. |
It seems that adding this line to |
docker-mailserver/target/postfix/main.cf Line 56 in 3adb53e
docker-mailserver/target/postfix/main.cf Lines 60 to 61 in 3adb53e
EDIT: Ah yeah.. you already figured it out 馃槄 It's a common enough issue, here's the same error with MailGun involved: bpetetot/conference-hall#661 (comment) Both resolved it by giving their domains an MX record. When it's a third-party out of your control, you'll need to drop the restriction. The bounce is sent to MailGun as they're the MTA / relay service delivering the mail, and bounces are typically sent back to the MTA that delivered the mail (not to the VERP / Quotes from cited links of prior paragraph
I think this feature is for address verification which notes it is intended to reduce junk mail by rejecting a sender address that cannot be replied to. The link also mentions
|
Just adding this for future readers interested in additional thoughts on potential rationale for this: Mail servers without a PTR reverse DNS record to point from their IP to their canonical hostname are more likely to be considered spam. (In fact, Google and Yahoo now require mail servers over a certain volume to have valid PTR records.) And an IPv4 PTR record requires a mail server to have a corresponding A record, since PTR records are the reverse of A records. So a mail server configured perfectly for deliverability should have an A record (due to having a PTR record) and therefore pass the |
馃摑 Preliminary Checks
馃憖 What Happened?
Postfix reject email with valid SPF but unresolvable hostname.
DNS records
SPF
A & AAAA
MX
馃憻 Reproduction Steps
No response
馃悑 DMS Version
v13.0.1
馃捇 Operating System and Architecture
Linux 6.1.0-13-amd64 #1 SMP PREEMPT_DYNAMIC Debian 6.1.55-1 (2023-09-29) x86_64 unknown unknown GNU/Linux
鈿欙笍 Container configuration files
No response
馃摐 Relevant log output
Improvements to this form?
No response
The text was updated successfully, but these errors were encountered: