The Sender Policy Framework Read up on the [Sender Policy Framework](/http://www.open-spf.org/Introduction/). ## Why? There's nothing stopping someone from pretending to send mail from a fake address. A scammer might send an from ceo@megacorp.com as follows: Please send me $10,000 to my temporary bank account 0123456789. How can we determine if sender's email address is fake or real? Sender Policy Framework (SPF) is one tool. ## What it does SPF is a system that your mail server uses to check if the sender of the email comes from the right server. Almost all mail servers will check for SPF records. So, if you don't want your mail to be marked as spam or phishing, you will want to set up proper DNS records. ## How it works || border=1 width=100%25 class="sortable simpletable" ||# Qualifier ||# Result ||# Meaning ||# Action || || + || Pass || Can send || Accept || || - || Fail || Cannot send || Reject || || ~ || SoftFail || Cannot send but still in transition || Accept but mark || || ? || Neutral || Neutral || Accept || || || None || No matching SPF record || Accept || || || PermError || Error (bad SPF record) || Unknown || || || TempError || Temporary Error || ? || || border=1 width=100%25 class="sortable simpletable" ||# Mechanism ||# Meaning || || all || Always matches || || ip4:
/