Microsoft O365 labels nanog potential fraud?

William Herrin bill at
Wed Mar 29 15:32:35 UTC 2017

On Wed, Mar 29, 2017 at 11:25 AM, Grant Taylor via NANOG <nanog at>

> Every SPF implementation I've seen has checked the SMTP envelope FROM
> address /and/ the RFC 822 From: header address.

Hi Grant,

The gold standard, Spamassassin, does not. Indeed, the message to which I
reply was scored by spam assassin as "SPF_PASS" even though you do not
include NANOG's servers in the SPF record for

Bill Herrin

William Herrin ................ herrin at  bill at
Dirtside Systems ......... Web: <>

More information about the NANOG mailing list