search

cyberdefenders / email-header-analyzer

E-Mail Header Analyzer
https://mailheaderanalyzer.herokuapp.com/
Other
637 stars 159 forks source link

[Feature Request ] SPF HELO #35

Open epbenten opened 1 year ago

epbenten commented 1 year ago

Hello,

RFC 7208 section 2.3 specifies the following

` It is RECOMMENDED that SPF verifiers not only check the "MAIL FROM" identity but also separately check the "HELO" identity by applying the check_host() function (Section 4) to the "HELO" identity as the

. ` Basically they recommend running against the sending server ehlo/help and the the MAIL FROM. I know of at least three mail gateways that employ this, one of which is Trend Micro. No rush, and can wait until after spf validation for Mail From is setup Regards
epbenten commented 1 year ago

Might be best to run it as a separate function as sometimes the headers are from after the email was delivered to the users mailbox.