Fighting Spam - Email Spoofing and SPF RecordsWritten by Tim Sisson
An SPF (Sender Policy Framework) record is a specification of what servers are allowed to send mail for a given domain name. Setting up an SPF record is the current standard for preventing spoofing -- when a user receives email that appears to have originated from one source when it actually was sent from another. Spoofing usually poses a problem for users who have a default/catch-all address set up and start receiving a bunch of return error messages for emails that they didn't even send, or when your try to send mail to another mail server that requires an SPF record to verify its source. Hotmail is a good example, because as of October 2006 they require that all emails include a Sender ID/SPF or else the mail will be routed as junk.
Keep in mind that when an SPF record is installed on your account, forwarders to/from other domains will not work!
An SPF record can easily be generated on this site:
The standard format for most SPF records will look like this, unless you have special MX modifications or other arrangements for outgoing mail:
"v=spf1 a mx ~all"
Once you've created your SPF record, all you need to do is send it to our technical support center at firstname.lastname@example.org to be installed. Please note that once the SPF record is installed, it can take a few days for the email bounces to stop, and for other mail systems to see the DNS change.
If you are a Hotmail user, you may need to email Microsoft at email@example.com to let them know that you have an SPF for your domain.