networking - Sender Policy Framework with several includes

07
2014-07
  • Hagen von Eitzen

    I am resolving an SPF issue and face the following: Assume the domain foobar.com has an SPF record with v=spf1 include:a.a -all, then I lookup host -t txt a.a and find v=spf1 include:b.b include:c.c -all, next I lookup b.b to find v=spf1 ipv4:1.2.3.4 ipv4:5.6.7.8 -all and c.c to find v=spf1 ipv4:9.10.11.12 ipv4:13.14.15.16 -all. (And yes, that's -all, not ~all everywhere)

    In reality, I even found a few more tree layers, but my question is about the concept: Doesn't the "-all" at the end of the SPF record for b.b prevent the evaluation of the c.c SPF records? In other words, isn't the whole convoluted construct equivalent to a single v=spf1 ipv4:1.2.3.4 ipv4:5.6.7.8 -all directly attached to the foobar.com domain?

    • Answers
    Know someone who can answer? Share a link to this question via email, Google+, Twitter, or Facebook.

    Related Question

    networking - Is there a way to 'include' a separate file in /etc/hosts?
  • lawnmowerlatte

    Is there any way to 'include' another file within the /etc/hosts file? Particularly I want to include a non-protected (-rw-rw-rw) file so I can easily edit it in something like TextMate without having to issue sudo vi /etc/hosts

    I'm on OS X, but as far as I know, this should be relevant in other *nix OSs.


    • Related Answers
  • coneslayer

    I do not believe there is any way to include other files into a hosts file.

    Would it be possible to make /etc/hosts group-writable by a group that only includes you (and any other users who need to edit it)?

  • Jawa

    Keep a hosts.base file and then write a simple script to build a complete, combined hosts file with that hosts.base file and the other files you want to include. You can cron it or execute on demand.