inbound spf setup

bounce non authentified messages

install

debian

apt install postfix-policyd-spf-python python3-spf python3-spf-engine
ls -lF /usr/bin/policyd-spf

slackware

slackware // python3

slackpkg install python3 python-pip python-setuptools
ln -s python3 /usr/bin/python

pip install py3dns pyspf pypolicyd-spf
#sbopkg -i python-pydns -i python-pyspf -i python-pypolicyd-spf
which policyd-spf
/usr/bin/policyd-spf -h
ls -alF /etc/python-policyd-spf/

freebsd

pkg install postfix-policyd-spf-perl

setup

debian

cd /etc/postfix-policyd-spf-python/

zcat /usr/share/doc/postfix-policyd-spf-python/policyd-spf.conf.commented.gz \
    > policyd-spf.conf.commented
grep -vE '^#|^$' policyd-spf.conf.commented > policyd-spf.conf.commented.clean

mv -i policyd-spf.conf policyd-spf.conf.dist
grep -vE '^#|^$' policyd-spf.conf.dist > policyd-spf.conf.clean
grep -vE '^#|^$' policyd-spf.conf.dist > policyd-spf.conf
vi policyd-spf.conf

Hide_Receiver = Yes

note that’s counter-intuitive but it is what it is

TestOnly = 1

slackware

configure the socket wrapper

#less pypolicyd-spf-2.0.2/policyd-spf.conf.commented
#cp -pi /etc/python-policyd-spf/policyd-spf.conf /etc/python-policyd-spf/policyd-spf.conf.dist
#grep -vE '^($|#)' /etc/python-policyd-spf/policyd-spf.conf.dist > /etc/python-policyd-spf/policyd-spf.conf
#vi /etc/python-policyd-spf/policyd-spf.conf

fix the error msg URL

cp -pi /usr/bin/policyd-spf /usr/bin/policyd-spf.dist
#sed 's/openspf\.org/open-spf.org/g' /usr/bin/policyd-spf.dist > /usr/bin/policyd-spf
sed 's/openspf\.net/open-spf.org/g' /usr/bin/policyd-spf.dist > /usr/bin/policyd-spf
chmod +x /usr/bin/policyd-spf

diff -bu /usr/bin/policyd-spf.dist /usr/bin/policyd-spf

and finally see the Hardening Postfix guide

freebsd

pkg install postfix-policyd-spf-perl

resources

Postfix SMTP Access Policy Delegation http://www.postfix.org/SMTPD_POLICY_README.html

Software http://www.open-spf.org/Software/

libspf2 - SPF Library - Home https://www.libspf2.org/

libspf2 - SPF Library - Download https://www.libspf2.org/download.html

Implementation of the Sender Policy Framework for SMTP authorization http://www.libspf2.org/ https://github.com/shevek/libspf2

DEPRECATED AS PATCH - SPF patch for Postfix http://www.ipnet6.org/postfix/spf/

Postfix SPF readme https://www.libspf2.org/patch/postfix-libspf2.README

Postfix http://www.en.sysadmin-cookbook.com/postfix/

Implementations http://www.open-spf.org/action_browse_id_Implementations_revision_106/

too painful with perl

SPF Postfix Server Setup using postfix-policyd-spf-perl https://wiki.mattrude.com/Sender_Policy_Framework_(SPF)#SPF_Postfix_Server_Setup_using_postfix-policyd-spf-perl

postfix-policyd-spf-perl https://launchpad.net/postfix-policyd-spf-perl/

fixed with python3

https://stackoverflow.com/questions/41342551/error-installing-pydns

alternatives

https://www.tummy.com/software/tumgreyspf/

http://www.acme.com/software/spfmilter/

https://www.libspf2.org/patch/postfix-libspf2.README

https://www.libsrs2.org/index.html


HOME | GUIDES | LECTURES | LAB | SMTP HEALTH | HTML5 | CONTACT
Copyright © 2024 Pierre-Philipp Braun