missing SPF record

jimlongo · Jan 9, 2013

On my VPS I have one account transferred from another server that I'm having a slight problem with the DNS records. The SPF record is missing although it is checked in Account Information > List Accounts > Modify Account. The DNS Zone editor in WHM has all the same settings as every other similar zone, yet the records are different on this one account. information garbled for privacy protection

Code:

noise:~ jimlongo$ dig steamers.ca ANY +noall +answer
streamers.ca.		21148	IN	SOA	ns1.vpsgrille.ca. jimlongo.div.com. 2013010806 86400 7200 3600000 86400
streamers.ca.		21148	IN	NS	ns1.vpsgrille.ca.
streamers.ca.		21148	IN	NS	ns2.vpsgrille.ca.
streamers.ca.		13948	IN	A	76.74.137.122
streamers.ca.		13948	IN	TXT	"v=spf1 +a +mx +ip4:76.74.137.122 ?all"
streamers.ca.		13948	IN	MX	0 steamers.ca.

Also note the MX record which contrasts with every other record on this VPS where it would normally be in the form of

Code:

streamers.ca.		13948	IN	MX	10 mail.steamers.ca.

Any advice? Can I edit this somewhere via SSH?

Thanks,
jim

cPanelMichael · Jan 14, 2013

Hello

You mentioned the SPF record is missing. Could you clarify where it's missing from? You may want to try disabling, and then enabling the SPF record via "cPanel >> Email Authentication".

Thank you.

jimlongo · Jan 17, 2013

I guess my question is why isn't the record shown as an SPF record instead of a TXT record?

And additionally why is the cpanel generated record have ?all
Not any kind of expert but my reading says

? Neutral The SPF record specifies explicitly that nothing can be said about validity accept

Most threads on this forum indicate it would be better to have -all

cPanelMichael · Jan 23, 2013

I found the following URL to help explain why TXT records are used:

HOWTO - Define an SPF Record

As for your second question, the consensus is to avoid hard fails on SPF records since it breaks email forwarding unless the forwarding server uses SRS.

The "~all" entry is generally preferred since it gets messages from non-standard senders bumped up in spam detection systems, but doesn't outright fail them. We do have an internal case open that aims to change the default SPF entry from "?all" to "~all". For reference, the internal case number is 51450.

You can find more information on the SPF record syntax at:

SPF Record Syntax

Thank you.

jimlongo · Jan 23, 2013

Thank you.

andryan · Aug 23, 2013

Hi Michael,

What is the progress on this default change?

cPanelMichael said:
I found the following URL to help explain why TXT records are used:

HOWTO - Define an SPF Record

As for your second question, the consensus is to avoid hard fails on SPF records since it breaks email forwarding unless the forwarding server uses SRS.

The "~all" entry is generally preferred since it gets messages from non-standard senders bumped up in spam detection systems, but doesn't outright fail them. We do have an internal case open that aims to change the default SPF entry from "?all" to "~all". For reference, the internal case number is 51450.

You can find more information on the SPF record syntax at:

SPF Record Syntax

Thank you.

cPanelMichael · Aug 23, 2013

There is no new information available on case 51450 at this time. I have made note of this thread on the internal case.

Thank you.

Thread starter	Similar threads	Forum	Replies	Date
J	SOLVED The security token is missing from your request	Email	7	Dec 7, 2022
D	GMAIL error: Messages missing a valid messageId header are not 550 5.7.1 accepted	Email	2	Sep 28, 2022
T	SPF record is missing	Email	1	Jun 3, 2020
A	Editing SPF record, but advance zone editor missing	Email	2	Jan 14, 2019
R	reject SPF failures setting missing	Email	3	Aug 31, 2016

Search

Search

missing SPF record

jimlongo

Well-Known Member

cPanelMichael

Administrator

jimlongo

Well-Known Member

cPanelMichael

Administrator

jimlongo

Well-Known Member

andryan

Member

cPanelMichael

Administrator