Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!
Bug 601750 - SPF policies review: handling of SPF failures
Summary: SPF policies review: handling of SPF failures
Status: CONFIRMED
Alias: None
Product: Gentoo Infrastructure
Classification: Unclassified
Component: Mailing Lists (show other bugs)
Hardware: All Linux
: Normal normal
Assignee: Gentoo Infrastructure
URL:
Whiteboard:
Keywords:
Depends on:
Blocks:
 
Reported: 2016-12-06 00:04 UTC by Robin Johnson
Modified: 2016-12-06 02:22 UTC (History)
1 user (show)

See Also:
Package list:
Runtime testing required: ---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description Robin Johnson archtester Gentoo Infrastructure gentoo-dev Security 2016-12-06 00:04:32 UTC 
TODO:
- Review handling of incoming mail to lists.gentoo.org for SPF compliance.
- Decision on non-pass match of @gentoo.org email.
  - Be mindful of ~all records vs -all.

Proposed actions:
- strongly encourage all developers to either relay or add their own SPF rules with a strict '-all' policy.
- Deploy qpsmtpd for programmatic customization in SPF validation on lists.g.o
-- be very strict about mail from @*.gentoo.org
-- potential policy: require GPG against known LDAP keys || strict SPF.