Milter-greylist

Bob Friesenhahn bfriesen@... [milter-greylist]
<milter-greylist@yahoogroups.com> wrote:

> > I blacklist spf self, that is when the spammer's SPF record validates
> > for my own machine.
> 
> Is this a common ploy?

Yes: if you operate a botnet, the most practical way of setting up an
always positive SPF record is to make it wild open. And in that case it
also match your own server IP, hence the blackist spf self trick.

I do not think SPF whitelisting makes sense. On the other hand,
blaklisting hosts failing SPF, or matching spf self, does catch some
spam.

-- 
Emmanuel Dreyfus
http://hcpnet.free.fr/pubz
manu@...