½ºÆÔÇÊÅ͸µÀ» À§ÇÑ SPF ¼³Á¤°ú ¿î¿µ | ÀÛ¼ºÀÏ : 2006/07/27 19:15 |
Á¶È¸¼ö : 23458 |
Á¦ ¸ñ : ½ºÆÔÇÊÅ͸µÀ» À§ÇÑ SPF ¼³Á¤°ú ¿î¿µ ÀÛ¼ºÀÚ : ÁÁÀºÁøÈ£(truefeel, http://coffeenix.net/ ) ÀÛ¼ºÀÏ : 2006.4.27(¸ñ) Á¤¸®ÀÏ : 2006.5.30(È) ¼öÁ¤ÀÏ : 2006.12.9(Åä) whitelist IP ¸ñ·Ï Ãß°¡ ½ºÆÔ¹æÁö±â¼úÀÎ SPF(Sender Policy Framework)°¡ ¹«¾ùÀÎÁö´Â '¸ÞÀÏÁÖ¼Ò º¯Á¶´Â no, SPF±â¼ú¿¡ ´ëÇØ' (2005.8.3, ±Û ÁÁÀºÁøÈ£) http://coffeenix.net/board_view.php?bd_code=1123 À» Àо±â ¹Ù¶õ´Ù. SPF¸¦ ÀÌ¿ëÇϱâ À§Çؼ´Â 1) ¸ÞÀÏÁÖ¼Ò¸¦ ¼Ó¿´´ÂÁö ÆÇ´ÜÇÒ ¼ö ÀÖ´Â Á¤º¸¸¦ Á¦°øÇÏ´Â ¼Û½ÅÃø°ú 2) ÆÇ´ÜÁ¤º¸¿¡ µû¶ó ½ºÆÔÀ» ÇÊÅ͸µÇÏ´Â ¼ö½ÅÃø µî 2°¡Áö ºÎºÐÀ¸·Î ³ª´² »ý°¢Çغ¼ ¼ö ÀÖ´Ù. ù°, ¼Û½ÅÃø¿¡¼´Â ÁöÁ¤ÇÑ IP¿¡¼ ¸ÞÀÏÀ» º¸³»´Â °æ¿ì´Â ¸ÞÀÏÁÖ¼Ò¸¦ ¼ÓÀÌÁö ¾Ê°í Á¤»óÀûÀ¸·Î ¹ß¼ÛÇÑ °ÍÀ¸·Î ÆÇ´ÜÇϵµ·Ï DNSÀÇ SPF ·¹ÄÚµå(SPF record) ¼³Á¤À» ÅëÇØ Á¤º¸¸¦ Á¦°øÇÑ´Ù. µÑ°, ¼ö½ÅÃø¿¡¼´Â From ¸ÞÀÏÁÖ¼Ò¿¡¼ µµ¸ÞÀÎ, IP¸¦ ¾Ë¾Æ³½ ÈÄ ¼Û½ÅÃøÀÌ Á¦°øÇÑ SPF ·¹ÄÚµå Á¤º¸¿Í ´ëÁ¶¸¦ Çؼ ÀÏÄ¡Çϸé Á¤»ó¸ÞÀÏ, ±×·¸Áö ¾ÊÀ¸¸é ¸ÞÀÏÁÖ¼Ò¸¦ À§º¯Á¶ÇÑ °ÍÀ¸·Î ÆÇ´ÜÇÏ°í ÇÊÅ͸µÀ» ÇÑ´Ù. hanmail.net, naver.com, empas.com(empal.com), paran.com, nate.com, dreamwiz.net(dreamwiz.com) µîÀÇ Æ÷ÅлçÀÌÆ®¿Í gmail.com, hotmail.com(msn.com) µîÀÇ ¸ÞÀϼºñ½º µî¿¡¼ ÀÌ¹Ì SPF ·¹ÄÚµå ¼³Á¤ÀÌ µÇ¾î ÀÖ´Ù. ÀÌ°ÍÀº °¡Â¥ ID@hanmail.net ¸ÞÀÏÁÖ¼Ò¸¦ °®°í ½ÇÁ¦ hanmail¼¹ö¸¦ ÅëÇØ º¸³»ÁöÁö ¾ÊÀº ¸ÞÀÏ¿¡ ´ëÇؼ´Â ¼ö½Å ÃøÀÇ SPF ÇÊÅ͸µ ¼³Á¤À» ÅëÇØ ½±°Ô °É·¯³¾ ¼ö ÀÖ´Ù´Â °ÍÀ» ÀǹÌÇÑ´Ù. »ó´ç¼öÀÇ ½ºÆÔ ¸ÞÀÏÀÌ ´ëÇü Æ÷Åп¡¼ º¸³½ °Íó·³ ÁÖ¼Ò¸¦ ¼ÓÀ̱⠶§¹®¿¡ Å« È¿°ú°¡ ÀÖÀ» °ÍÀÌ´Ù. µÚ¿¡¼ ÀÚ¼¼È÷ »ìÆ캸°ÚÁö¸¸ hanmail.netÀÇ °æ¿ì ´Â 211.43.197.0/24¿¡¼ ¸ÞÀÏÀ» ¹ß¼ÛÇϸé Á¤»óÀûÀÎ °ÍÀ¸·Î ÆÇ´ÜÇ϶ó°í ¼³Á¤µÇ¾î ÀÖ´Ù. À̱ÛÀº ¼ö½ÅÃøÀÇ sendmail¿¡¼ spfmilter¸¦ ÀÌ¿ëÇؼ ½ºÆÔÇÊÅ͸µÇÏ´Â ¹æ¹ýÀ» ¼³¸íÇÑ´Ù. 1. libspf2 ¼³Ä¡ spfmilter´Â SPF libraryÀÎ libspf2¸¦ »ç¿ëÇÑ´Ù. libspf2 ¶óÀ̺귯¸®´Â sendmailÀ̳ª postfix µîÀÇ ¸ÞÀÏ ¼¹ö¿¡¼ SPF ·¹Äڵ带 °Ë»çÇÏ°í ÀÎÁõµÈ IP, µµ¸ÞÀÎÀ» ÅëÇؼ ¸ÞÀÏÀÌ º¸³»Áø °ÍÀÎÁö È®ÀÎÇÏ´Â ¶óÀ̺귯¸® ÀÌ´Ù. http://www.libspf2.org/ ¿¡ ´Ù¿î¹ÞÀ» ¼ö ÀÖÀ¸¸ç RPM ÆÐÅ°Áöµµ Á¦°øÀ» ÇÑ´Ù.
[ RPM ÆÐÅ°Áö ]
2. spfmilter ¼³Ä¡ http://www.acme.com/software/spfmilter/ ¿¡¼ C¾ð¾î·ÎµÈ spfmilter ¼Ò½º¸¦ ³»·Á¹Þ¾Æ ¼³Ä¡ÇÑ´Ù.
spfmilter¸¦ ºÎÆýà ÀÚµ¿½ÇÇàÇϱâ À§ÇÑ Gentoo, Redhat ¹èÆ÷ÆÇ°ú FreeBSD¿ë rc ½ºÅ©¸³Æ®¸¦ Á¦°øÇÑ´Ù. ·¹µåÇÞ ¹èÆ÷ÆÇÀÇ °æ¿ì¸¦ ¼³¸íÇϸé - ¼Ò½º³» rc_scripts/redhat_sysconfig ¸¦ /etc/sysconfig/spfmilter ·Î º¹»çÇÑ´Ù. - rc_scripts/redhat Àº /etc/rc.d/init.d/spfmilter ·Î º¹»çÇÑ´Ù. init.d/spfmilter ÆÄÀÏ¿¡¼ spfmilter °æ·Î¸¦ ¼öÁ¤ÇÑ´Ù. (±âº» Á¦°ø ½ºÅ©¸³Æ®¿¡´Â /usr/sbin/spfmilter·Î µÇ¾î ÀÖÀ¸³ª configure ½Ã ¿É¼Ç¾øÀÌ ½ÇÇàÇß´Ù¸é /usr/local/sbin/ ¾Æ·¡¿¡ installµÉ °ÍÀÌ´Ù.) ÀÌÁ¦ spfmilter ½ÇÇàÇÏ´Â spfmilt ID¸¦ »ý¼ºÇÏ°í socket ÆÄÀÏÀÌ À§Ä¡ÇÒ µð·ºÅ丮¸¦ »ý¼ºÇÑ´Ù.
3. sendmail.cf ¼³Á¤°ú spfmilter ¿î¿µ sendmail MilterAPI¸¦ ÅëÇؼ spfmilterÀ» »ç¿ëÇϵµ·Ï ¼³Á¤Çغ¸ÀÚ. /etc/mail/sendmail.mc¿¡
À» ÀúÀåÇÑ ÈÄ¿¡ ´ÙÀ½¸í·ÉÀ» ½ÇÇàÇÑ´Ù.
¶Ç´Â sendmail.cf ¿¡ Á÷Á¢ ´ÙÀ½ ÁÙÀ» ³Ö¾îÁ൵ µÈ´Ù. ±âÁ¸¿¡ ÀÌ¹Ì ClamAV³ª SpamAssassin °ú °°Àº ´Ù¸¥ Filter¸¦ »ç¿ëÁßÀ̶ó¸é O InputMailFilters=clamav, spfmilter ó·³ ±âÁ¸ ¼³Á¤¿¡ ÄÞ¸¶(,)·Î ±¸ºÐÇؼ Ãß°¡ ÇÏ¸é µÈ´Ù.
SPF ·¹ÄÚµå °Ë»ç¾øÀÌ Çã¿ëÇÒ IPµéÀº /etc/mail/spfmilter-whitelist ¿¡ Àû¾îÁÖ¸é µÈ´Ù. ¼¹öÀÇ IP¸ñ·ÏÀ̳ª »ç¹«½ÇÀÇ IP ¸ñ·Ï µîÀ» Àû¾îÁÖ¸é µÉ °ÍÀÌ´Ù.
¼ö½ÅµÈ ¸ÞÀÏ Áß Á¤»ó ¸ÞÀÏÀε¥, ½ºÆÔÀ¸·Î 󸮵Ǵ °æ¿ì°¡ ÀÖ´Ù. ´ëÇ¥ÀûÀÎ ¿¹°¡ jobkorea´Ù. ±¸Á÷ÀÚ°¡ ÀÔ»ç Èñ¸Á ¾÷ü¸¦ ¼±ÅÃÇÏ°í ±¸Á÷½ÅûÇÒ ¶§ ±¸Àξ÷ü¿¡ ¸ÞÀÏÀÌ ¹ß¼ÛµÇ´Âµ¥, From ÁÖ¼Ò°¡ jobkorea ¸ÞÀÏÁÖ¼Ò °¡ ¾Æ´Ñ ±¸Á÷ÀÚÀÇ ¸ÞÀÏÁÖ¼Ò¸¦ »ç¿ëÇÑ´Ù. ±¸Á÷ÀÚ´Â ÁÖ·Î @hanmail.net, @naver.com, @gmail.com µîÀÇ ¸ÞÀÏ ÁÖ¼Ò¸¦ »ç¿ëÇÏ°í, jobkorea ¸ÞÀÏ ¼¹ö IP¿¡¼ Àú ¸ÞÀÏÁÖ¼Ò¸¦ FromÀ¸·Î ÇÏ¿© ¹ß¼ÛÇÏ´Ï ¸ÞÀÏÁÖ¼Ò¸¦ À§Á¶ÇÑ °ÍÀ¸·Î ÆÇ´ÜÇÏ¿© ÇÊÅ͸µÇÏ°Ô µÇ´Â °ÍÀÌ´Ù. ÀÌ¿Ü incruit.com, kr.ibm.com µîµµ ±×·± °æ¿ì°¡ ÀÖ¾ú´Ù. [ Á¤»ó¸ÞÀÏÀÌ ÇÊÅ͸µµÇ´Â °úÁ¤ ¿¹ ]
µû¶ó¼ jobkorea ¼¹ö IP¸¦ Æ÷ÇÔÇÑ ´ÙÀ½ ¸ñ·ÏÀ» spfmilter-whitelist¿¡ Ãß°¡ÇØÁÖ¸é Á¤»ó¸ÞÀÏÀÌ ÇÊÅ͸µµÇ´Â °æ¿ì¸¦ ¸·À» ¼ö ÀÖ´Ù. (°æÇè¿¡ ÀÇÇØ Çϳª¾¿ Ãß°¡ÇÑ °ÍÀÌ´Ù. À̿ܵµ ¹ß»ýÇÏ°Ô µÇ¸é Ãß°¡ÇØÁÖ¸é µÈ´Ù.)
ÀÌÁ¦ ¼³Á¤Àº ´Ù µÇ¾úÀ¸´Ï spfmilter¸¦ ½ÇÇàÇÏÀÚ. spfmilter°°ÀÌ MilterAPI¸¦ ÅëÇØ ¿î¿µµÇ´Â ÇÁ·Î±×·¥Àº sendmailº¸´Ù ¸ÕÀú ½ÇÇàÀÌ µÇ¾î¾ß ÇÑ´Ù. ¿©±â¿¡´Â ¾ð±ÞÇÏÁö ¾ÊÀº clamav, antivir Milter °°Àº ¾ÈƼ¹ÙÀÌ·¯½º Åøµµ ¸¶Âù°¡Áö´Ù. ÀÌ¹Ì sendmailÀÌ µ¿ÀÛÁßÀ̸é Àç½ÇÇàÇØÁÖ¸é µÈ´Ù. °Ë»ç °á°ú¿¡ µû¶ó Received-SPF: ¸ÞÀÏ Çì´õ°¡ ºÙ°Ô µÈ´Ù. rc ½ºÅ©¸³Æ®·Î spfmilter ½ÇÇàÇÏÁö ¾Ê°í ¼öµ¿À¸·Î ½ÇÇàÇÏ´Â ¿¹´Â ´ÙÀ½°ú °°´Ù.
¸¸¾à Á¤»ó¸ÞÀÏÀε¥, spfmilter°¡ softfail(¶Ç´Â fail. ÀÌ »óÅ¿¡ ´ëÇؼ´Â µÚ¿¡¼ ¼³¸íÇÑ´Ù.)·Î ÆÇ´ÜÇß´Ù¸é /etc/mail/spfmilter_whitelist¿¡ ¹ß¼ÛÁö IP¸¦ Ãß°¡ÇØÁÖ°í spfmilter Àç½ÇÇàÇØÁÖ¸é µÈ´Ù. ¹°·Ð sendmailµµ Àç½ÇÇàÇØ¾ß ÇÑ´Ù. 4. ÁÖ¿ä »çÀÌÆ®ÀÇ SPF ·¹ÄÚµåÀÇ ¼³Á¤ È®ÀÎ SPF ·¹ÄÚµå ¼³Á¤ÀÌ µÇ¾îÀÖ´ÂÁö È®ÀÎÇÏ´Â ¹æ¹ýÀº DNS lookupÅøÀÎ dig ¸í·ÉÀ» ÀÌ¿ëÇؼ È®ÀÎÇÒ ¼ö ÀÖ´Ù. hanmail.net ÀÇ SPF ·¹ÄÚµå ¼³Á¤À» È®ÀÎÇÑ ¿¹ÀÌ´Ù. ³×ÀÓ¼¹öÀÇ TXT·¹Äڵ忡 ¼³Á¤µÇ¾î ÀÖ´Â °ÍÀÌ È®ÀεƴÙ.
¾Æ·¡ ¸ñ·ÏÀº ÇÊÅ͸µµÈ ¸ÞÀϷα׸¦ Åä´ë·Î ÇØ´çÁÖ¼Ò¸¦ dig ¸í·ÉÀ¸·Î È®ÀÎÇؼ ÀÛ¼ºÇÑ °ÍÀÌ´Ù. °¢ ¼³Á¤ÀÇ Àǹ̴ 'SPF ±â¼ú¿¡ ´ëÇØ (±Û ÁÁÀºÁøÈ£)' http://coffeenix.net/board_view.php?bd_code=1123 ¸¦ Àо±â ¹Ù¶õ´Ù. 1) hanmail.net(daum.net) v=spf1 ip4:211.43.197.0/24 ptr ~all 2) naver.com v=spf1 ip4:220.95.234.208 ip4:61.74.70.0/23 ip4:222.122.16.0/24 ip4:220.73.156.0/24 ip4:211.218.150.0/24 ip4:211.218.151.0/24 ip4:211.218.152.0/24 ip4:218.145.30.0/24 ~all 3) empas.com(empal.com) v=spf1 ip4:220.95.223.0/24 ip4:220.90.209.0/24 ip4:220.90.208.0/24 ptr -all 4) paran.com v=spf1 ip4:211.41.82.0/24 a mx ptr ~all 5) nate.com v=spf1 ip4:203.226.253.0/24 ip4:203.226.255.0/24 ~all 6) dreamwiz.net(dreamwiz.com) v=spf1 ip4:211.39.128.0/24 ip4:211.39.129.0/24 ip4:222.122.42.0/25 ~all 7) gmail.com v=spf1 redirect=_spf.google.com 8) hotmail.com(msn.com) v=spf1 include:spf-a.hotmail.com include:spf-b.hotmail.com include:spf-c.hotmail.com include:spf-d.hotmail.com ~all 9) hanmir.com v=spf1 ip4:211.41.82.0/24 a mx ptr ~all 10) chol.com v=spf1 ip4:203.252.1.0/24 ip4:203.252.3.0/24 ip4:164.124.191.0/24 ip4:210.120.128.23 ~all 11) korea.com v=spf1 mx ip4:211.49.224.0/24 ip4:211.109.1.0/24 ip4:211.49.227.32 ip4:211.49.227.33 ~all 12) freechal.com v=spf1 a:mail101.freechal.com a:mail102.freechal.com a:mail103.freechal.com a:mail104.freechal.com a:mail105.freechal.com a:mail106.freechal.com mx:mx01.freechal.com ~all 13) sayclub.com(sayclub.co.kr) v=spf1 ip4:211.234.215.240/32 ip4:211.233.85.225/32 ~all 14) lycos.co.kr v=spf1 ip4:203.226.253.0/24 ip4:203.226.255.0/24 ~all 15) nownuri.net v=spf1 a:mail.nownuri.net a:nowmail01.nownuri.net a:lion4.nownuri.net ~all 16) nhncorp.com v=spf1 ip4:220.95.234.208 ip4:220.73.156.0/24 ip4:211.218.150.0/24 ip4:220.73.146.0/24 ip4:220.73.158.0/24 ip4:220.73.159.0/24 ip4:220.95.235.0/24 ip4:220.95.234.0/24 ip4:220.95.236.0/24 ip4:211.218.152.0/24 ip4:218.145.30.0/24 ~all 17) hankooki.com v=spf1 ip4:211.40.221.201 ip4:211.40.221.202 ip4:211.40.221.203 ip4:211.40.221.198 ip4:211.40.221.250 ip4:211.233.68.69 ip4:211.40.221.200 ptr a:mailling.hankooki.com a:smtp.hankooki.com mx:211.40.221.200 ~all 18) hani.co.kr v=spf1 mx a:mail2.hani.co.kr a:news.hani.co.kr mx:mail2.hani.co.kr mx:news.hani.co.kr ~all 19) interpark.com v=spf1 ip4:218.144.89.0/24 ip4:211.233.74.0/24 ~all 20) auction.co.kr v=spf1 ip4:211.233.17.0/24 ip4:211.115.78.0/24 ip4:222.231.5.55 ip4:210.182.155.153 ip4:210.182.155.154 ip4:210.182.155.155 ~all 21) jobkorea.co.kr v=spf1 ip4:61.250.87.0/24 a mx -all 22) hostway.co.kr v=spf1 ip4:66.232.144.48 ip4:66.232.139.0/24 ip4:211.239.150.30 ip4:211.115.223.215 ~all 23) microsoft.com v=spf1 mx include:_spf-a.microsoft.com include:_spf-b.microsoft.com include:_spf-c.microsoft.com ~all 24) aol.com spf2.0/pra ip4:152.163.225.0/24 ip4:205.188.139.0/24 ip4:205.188.144.0/24 ip4:205.188.156.0/23 ip4:205.188.159.0/24 ip4:64.12.136.0/23 ip4:64.12.138.0/24 ptr:mx.aol.com ?all v=spf1 ip4:152.163.225.0/24 ip4:205.188.139.0/24 ip4:205.188.144.0/24 ip4:205.188.156.0/23 ip4:205.188.159.0/24 ip4:64.12.136.0/23 ip4:64.12.138.0/24 ptr:mx.aol.com ?all 25) paypal.com spf2.0/pra mx include:s._sid.ebay.com include:m._sid.ebay.com include:p._sid.ebay.com include:c._sid.ebay.com ~all v=spf1 mx include:s._spf.ebay.com include:m._spf.ebay.com include:p._spf.ebay.com include:c._spf.ebay.com ~all 26) sohu.com v=spf1 ip4:61.135.130.0/23 ip4:61.135.132.0/23 ip4:61.135.134.0/23 ip4:61.135.145.0/23 ip4:61.135.150.0/23 ip4:220.181.26.0/24 ip4:222.28.152.128/25 ip4:218.206.87.0/25 ip4:221.236.12.128 ip4:203.184.141.0/24 ip4:61.152.234.0/24 ~all 27) 163.com v=spf1 ip4:220.181.12.0/22 ip4:202.108.5.0/24 -all 5. spfmilter°¡ ³²±â´Â ¸ÞÀÏÇì´õ¿Í procmailrc ¼³Á¤ maillog¿¡ ³²Àº spfmilter°ü·Ã ¸Þ½ÃÁöÀÇ ÀϺκÐÀÌ´Ù. (¡Ø ÀϺΠIP¿Í µµ¸ÞÀÎ, ¸ÞÀÏÁÖ¼Ò´Â ¼öÁ¤)
pass, fail, softfail, neutral, none, unknown, error µîÀÇ °á°ú¸¦ È®ÀÎÇÒ ¼ö ÀÖÀ» °ÍÀÌ´Ù. - pass : 100% È®½ÇÇÑ ¸ÞÀÏ·Î ÆÇ´ÜÇÑ °æ¿ìÀÌ´Ù. SPF ·¹Äڵ峪 whitelist¿¡ Æ÷ÇÔµÈ IPÀÌ´Ù. - fail : ¸ÞÀÏÁÖ¼Ò¸¦ À§º¯Á¶ÇÑ °ÍÀ¸·Î ÆÇ´ÜÇÑ °æ¿ì. ÇØ´ç ¸ÞÀÏÀº ÇÊÅ͸µÃ³¸®ÇÏ¸é µÈ´Ù. SPF ·¹Äڵ忡 -all ·Î ¼³Á¤ÇÑ °æ¿ìÀÓ - softfail : 100%´Â ¾Æ´ÏÁö¸¸ failÂÊ¿¡ °¡±õ°í, fail°ú neutralÀÇ Áß°£Á¤µµ¿¡ ÇØ´çÇÑ´Ù. SPF ·¹Äڵ忡 ~all ·Î ¼³Á¤ÇÑ °æ¿ìÀÓ À§ »çÀÌÆ®¿¡¼ empas.com, jobkorea.co.kr, 163.comÀ» Á¦¿ÜÇÑ ´ëºÎºÐÀÌ ~all·Î ¼³Á¤µÇ¾î ÀÖÀ¸´Ï ÀÌ ÆÇÁ¤ »óÅ¿¡ ´ëÇؼµµ ÇÊÅ͸µÇØ¾ß SPF »ç¿ë¿¡ È¿°ú°¡ ÀÖ´Ù. - neutral : ¸ÞÀÏÁÖ¼ÒÀÇ À§º¯Á¶ ÆÇ´ÜÇÏ´Â °ÍÀ» ¿øÄ¡ ¾ÊÀ½À» ³ªÅ¸³½´Ù. µû¶ó¼ none°ú °°Àº ÇüÅ·Πó¸®ÇØÁÖ¸é µÈ´Ù. SPF ·¹Äڵ忡 ?all ·Î ¼³Á¤ÇÑ °æ¿ìÀÓ - none : SPF ·¹Äڵ带 Á¦°øÇÏÁö ¾Ê´Â °æ¿ì - unknown : lookupÇÑ °á°ú¸¦ ¾Ë ¼ö ¾øÀ»(¿Ïº®ÇÏ°Ô Ã³¸®µÇÁö ¸øÇÑ) °æ¿ì - error : lookupÇÒ ¶§ ¿¡·¯°¡ ¹ß»ýÇÑ °æ¿ì ¸ÞÀÏÁÖ¼Ò À§º¯Á¶°¡ ³ôÀº ¼ø¼·Î ³ª¿Çϸé fail > softfail > neutral > none > pass ¼øÀ¸·Î º¼ ¼ö ÀÖ´Ù. SPFÀÇ ÆÇÁ¤ »óŸ¦ ¾Ë¾ÒÀ¸´Ï ÀÌÁ¦ procmailÀ» ÅëÇÏ¿© ÇÊÅ͸µ Àû¿ëÀ» Çغ¸ÀÚ. - 'Received-SPF: fail'À϶§¿Í 'Received-SPF: softfail' ÀÎ °æ¿ì¿¡´Â procmail¿¡ ·Î±×¸¦ ³²±â°í - ¼ö½ÅµÈ ¸ÞÀÏÀ» ½ºÆÔ¸ÞÀÏÇÔ(var/log/SPAM_SPF.log, ¸ÞÀÏÀ» ¹ö¸®·Á¸é /dev/null ÁöÁ¤)À¸·Î º¸³»±â À§ÇÑ procmailrc ¼³Á¤ ¿¹´Â ´ÙÀ½°ú °°´Ù. - ¾Æ·¡ ¼³Á¤¿¡¼ LOG= ´ÙÀ½ÁÙ¿¡ Å«µû¿ÈÇ¥(")´Â ÁٹٲÞÀ» À§Çؼ Ç¥½ÃÇÑ °ÍÀ¸·Î, Àß ¸ø Ç¥±âÇÑ°Ô ¾Æ´Ï´Ù. [ /etc/procmailrc ]
* ´Ù¿î·Îµå : http://coffeenix.net/truefeel/files/spf_procmailrc.txt /var/log/procmail ¿¡´Â ´ÙÀ½°ú °°ÀÌ ±âº» ·Î±× ¿Ü¿¡ '==='·Î ½ÃÀÛÇÏ´Â ÇÑÁÙÂ¥¸® ·Î±×°¡ Ãß°¡·Î ³²°ÔµÈ´ô. (¸ÞÀÏÁÖ¼Ò xxxxx·Î º¯°æ)
DomainKeys¸¦ »ç¿ëÇÏ´Â ¾ßÈĸ¦ Á¦¿ÜÇÑ ´ëºÎºÐÀÇ Æ÷Åп¡¼´Â SPF ·¹ÄÚµå ¼³Á¤ÀÌ µÇ¾î ÀÖÀ¸¹Ç·Î º¸´Ù ±ú²ýÇØÁø ¸ÞÀÏÇÔÀ¸·Î »óÅÇÑ ¾ÆħÀ» ¸ÂÀÌÇÏ°Ô µÉ °ÍÀÌ´Ù. 6. Âü°íÀÚ·á(°ü·ÃÀÚ·á) * ½ºÆÔÇÊÅ͸µ ±â¼ú SPF¿¡ ´ëÇÑ SPF ·¹ÄÚµåÀÇ ¼³Ä¡¿Í ¿î¿µ http://coffeenix.net/doc/security/SPF¼³Ä¡¹×¿î¿µÁöħ¼.pdf Ãâó : ºÒ¹ý½ºÆÔ´ëÀÀ¼¾ÅÍ( http://www.spamcop.or.kr/ ) * spfmilter Installation http://www.acme.com/software/spfmilter/ * Received-SPF: a new header http://www.openspf.org/newheader.html * Sender Policy Framework (SPF) for Authorizing Use of Domains in E-MAIL, version 1 http://www.schlitt.net/spf/spf_classic/draft-schlitt-spf-classic-02.html * SPF Softfail http://www.micheldonais.com/archives/17 * SPF Configuration (±Û ±èÁ¤±Õ) http://oops.org/?t=lecture&sb=sendmail&n=9 |
Ä¿ÇǴнº, ½Ã½ºÅÛ ¿£Áö´Ï¾îÀÇ ½°ÅÍ / URL : http://coffeenix.net/board_view.php?bd_code=1426 |