python-policyd-spf failing on AOL SPF records.
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
pypolicyd-spf |
Fix Released
|
Undecided
|
Unassigned | ||
pypolicyd-spf (Ubuntu) |
Fix Released
|
Medium
|
Unassigned | ||
pyspf (Ubuntu) |
Fix Released
|
Medium
|
Scott Kitterman | ||
python-dns (Ubuntu) |
Invalid
|
Medium
|
Unassigned |
Bug Description
It seems that the long SPF records for "aol.com" are causing
python-policyd-spf to fail when getting the DNS TXT record by UDP.
Here are the TXT records fetched on www.volano.com:
$ host -t txt aol.com
;; Warning: Message parser reports malformed message packet.
;; Truncated, retrying in TCP mode.
aol.com descriptive text "v=spf1 ip4:152.
ip4:205.
ip4:64.12.136.0/23 ip4:64.12.138.0/24 ip4:64.12.143.99/32
ip4:64.
aol.com descriptive text "spf2.0/pra ip4:152.
ip4:205.
ip4:205.
ip4:64.12.143.99/32 ip4:64.
ptr:mx.aol.com ?all"
Here is the timeout getting the TXT records on www.commspeak.com,
presumably because they're dropped by intervening routers:
$ host -t txt aol.com
;; connection timed out; no servers could be reached
The Postfix configuration on both machines is:
main.cf
-------
smtpd_recipient
...
warn_if_reject check_policy_
...
master.cf
---------
...
# Python Sender Policy Framework (SPF) Service
policy-spf unix - n n - - spawn
user=nobody argv=/usr/
In the Postfix log files, I get the following on www.volano.com:
Mar 14 11:24:39 ldc1042 postfix/
imr-
Mar 14 11:24:39 ldc1042 policyd-spf[8298]: :HELO client-
helo=
<email address hidden>;
Mar 14 11:24:39 ldc1042 policyd-spf[8298]: SPF Temporary Error:
DNS Ran off end of data:Mail From client-
helo=
<email address hidden>;
Mar 14 11:24:39 ldc1042 postfix/
from imr-m06.
Recipient address rejected: Received-SPF: Temperror (SPF Temporary
Error: DNS Ran off end of data) Mail From client-
helo=
<email address hidden>; ; from=<email address hidden> to=<email address hidden>
proto=ESMTP helo=<imr-
Mar 14 11:24:40 ldc1042 postfix/
imr-
On www.commspeak.com I get:
Mar 14 09:24:07 www postfix/
imr-
Mar 14 09:24:08 www policyd-spf[2886]: :HELO client-
helo=
<email address hidden>;
Mar 14 09:24:38 www policyd-spf[2886]: SPF Temporary Error: DNS
Timeout:Mail From client-
<email address hidden>; <email address hidden>;
Mar 14 09:24:38 www postfix/
imr-
Recipient address rejected: Received-SPF: Temperror (SPF Temporary Error:
DNS Timeout) Mail From client-
<email address hidden>; <email address hidden>;
; from=<email address hidden> to=<email address hidden> proto=ESMTP
helo=
Mar 14 09:24:40 www postfix/
imr-
ProblemType: Bug
Architecture: i386
Date: Sat Mar 22 12:46:20 2008
DistroRelease: Ubuntu 7.10
Package: python-spf 2.0.4-1
PackageArchitec
SourcePackage: pyspf
Uname: Linux www 2.6.22-14-server #1 SMP Sun Oct 14 23:34:23 GMT 2007 i686 GNU/Linux
description: | updated |
Changed in pyspf: | |
status: | Fix Committed → Fix Released |
Changed in pypolicyd-spf: | |
status: | New → Fix Released |
Please provide log information from /var/log/mail.log showing the problem
you are having. Postfix and the policy server should provide suffficent
information to debug this.