Yahoo Groups archive

Milter-greylist

Index last updated: 2026-04-28 23:32 UTC

Message

Re: [milter-greylist] SPF SELF without known local address

2013-08-13 by Jim Klimov

On 2013-08-13 05:54, manu@... wrote:
> Jim Klimov <jimklimov@... <mailto:jimklimov%40cos.ru>> wrote:
>
>  > Is there a way to permit "spf pass" EXCEPT "spf self" hits early
>  > in the rules, and have those "spf self" hits fall through and be
>  > subjected to all the other tests like regex - not plain greylisted?
>
> Have you tried this?
> rcpt whitelist not spf self spf pass


I've seen a number of strange entries like the one below after enabling
the rule as suggested above.

The domain's SPF does include this IP address as a trusted source,
so this ACL rule's trust is well earned (and the message is delivered).

But why is this logged: "skipping greylist because sender is not
SPF-compliant"? Where is it *not* compliant? The sender domain has
an SPF rule and the sender host matches it as a direct "pass".

Details follow...

Aug 13 16:31:02 ucs milter-greylist: [ID 471652 mail.debug] Incoming 
connection from host '[46.165.235.131]'
Aug 13 16:31:02 ucs milter-greylist: [ID 308029 mail.debug] Got an 
unresolved host name [46.165.235.131], will try to resolve
Aug 13 16:31:02 ucs milter-greylist: [ID 682236 mail.debug] Requesting 
PTR entry for 131.235.165.46.in-addr.arpa.
Aug 13 16:31:02 ucs milter-greylist: [ID 356585 mail.debug] res_nquery 
failed: Error 0
Aug 13 16:31:02 ucs milter-greylist: [ID 283800 mail.debug] Retaining 
name '[46.165.235.131]'
Aug 13 16:31:02 ucs milter-greylist: [ID 703198 mail.debug] 
0MRG0017UYROPJ00: addr = [46.165.235.131][46.165.235.131], from = 
<admin@...>, rcpt = <taisia@...>
Aug 13 16:31:02 ucs milter-greylist: [ID 503426 mail.debug] SPF return 
code 4 (pass, result 0)
Aug 13 16:31:02 ucs milter-greylist: [ID 859003 mail.debug] SPF lookup 
performed in 0.183734s
Aug 13 16:31:02 ucs milter-greylist: [ID 503426 mail.debug] SPF return 
code 2 (pass, result 1)
Aug 13 16:31:02 ucs milter-greylist: [ID 859003 mail.debug] SPF lookup 
performed in 0.010663s
Aug 13 16:31:02 ucs milter-greylist: [ID 561399 mail.debug] Mail 
from=<admin@...>, rcpt=<taisia@...>, 
addr=[46.165.235.131][46.165.235.131] is matched by entry racl 1477 
whitelist not spf self spf pass [addheader "Received-SPF: whitelist not 
spf self spf pass"] [maxpeek -1]
Aug 13 16:31:02 ucs milter-greylist: [ID 902575 mail.info] 
0MRG0017UYROPJ00: skipping greylist because sender is not SPF-compliant, 
(from=<admin@...>, rcpt=<taisia@...>, 
addr=[46.165.235.131][46.165.235.131]) ACL 1477



# nslookup -q=txt xbosnomer.net 8.8.8.8
Server:         8.8.8.8
Address:        8.8.8.8#53

Non-authoritative answer:
xbosnomer.net   text = "v=spf1 ip4:46.165.235.131 a mx ~all"

# nslookup -q=a xbosnomer.net 8.8.8.8
Server:         8.8.8.8
Address:        8.8.8.8#53

Non-authoritative answer:
Name:   xbosnomer.net
Address: 46.165.235.131

# nslookup 46.165.235.131 8.8.8.8
Server:         8.8.8.8
Address:        8.8.8.8#53

** server can't find 131.235.165.46.in-addr.arpa.: NXDOMAIN

Attachments

  • No local attachments were found for this message.

Move to quarantaine

This moves the raw source file on disk only. The archive index is not changed automatically, so you still need to run a manual refresh afterward.