This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

SPF Check did not work for all Mails

Hey there,

we found an issue with the SPF-Check feature in OUR UTM version: 9.705-3.

The spf-Record for our domain is set correctly.

If I sent a message from a spoofed sender to one receiver in our organisation,

the mail is correctly rejected: Abgelehnt: SPF (SPF check failed).

But if I sent the same mail to two or more receivers (with the same domain) in our organisation,

only the mail to the first receiver is rejected and the second one gets delivered!


If I sent a message from a spoofed sender to two receivers (with different domains) in our organisation,

both mails gets delivered!

If I sent a message from a spoofed sender to multiple receivers (with different domains) in our organisation,

only the first mail per domain gets rejected and the rest gets delivered!

In short: Only the mail to the first receiver per domain gets SPF-checked and rejected.

For me this seems like a bug. Can anyone confim this behavior?

Chris



This thread was automatically locked due to age.
Parents
  • FormerMember
    0 FormerMember

    Hi ,

    Thanks for reaching out, and welcome to the Community! 

    If possible, I'd suggest you update the firmware version to 9.706. Starting with this release, email protection will use the Sophos Anti-Spam interface(SASI). 

    Read more about firmware 9.706 on the following link: 

    If the issue remain after the firmware update, open a support case at support.sophos.com with the logs and original email samples. 

    Thanks,

  • Thanks for your reply - i will try this the next days. This version is not offered in the UTM yet,

    but I can download it manually from the FTP.

Reply Children