Subj : Re: wcsap.ini recommendations To : All From : HECTOR SANTOS Date : Thu Jan 31 2019 19:18:36 Date: Mon, 01 May 2006 18:29:49 -0400 From: HECTOR SANTOS To: DAVE GOURD Subject: Re: wcsap.ini recommendations Newsgroups: win.server.smtp.&.avs Message-ID: <1146522744.46.1146453077@winserver.com> References: <1146453077.46.0@winserver.com> X-WcMsg-Attr: Rcvd X-Mailer: Wildcat! Interactive Net Server v7.0.454.5 Lines: 36 wrote in message news:1146453077.46.0@winserver.com... > I have read the help files and text in re the wcsap.ini settings, but > looking at best and most widely practiced settings for > > Accept-SPF-SoftFail and > Accept-SPF-Neutral and > RecursionLimit > > I have them at (false, false, 20) but want max impact on bad senders. Not > 100% sure what the recursion limit is about. Recursion is when a SPF policy as a redirection to another SPF policy, and then another, and another, and so. The REDIRECT or INCLUDE SPF commands allow an SPF record to have redirect or include to another list of IP addresses. Usually big systems with a long list of machines might use these commands. For example, big.com has a SPF record: v=spf1 redirect:big2.com include:vendor.com etc. Well, it is possible that this takes place over and over. The recursionlimit controls the maximum limit of how deep it goes. hacker.com might want to frustrate your DNS lookup by redirecting to itself: v=spf1 redirect:hacker.com The limit controls this possible abuse. --- Hector * Origin: Prison Board BBS Mesquite Tx //telnet.RDFIG.NET www. (1:124/5013) .