spf ent txt records.

Shane Kerr shane at isc.org
Wed Mar 13 12:26:10 UTC 2013


On Wednesday, 2013-03-13 11:33:35 +0000, 
hugo hugoo <hugobxl at hotmail.com> wrote:
> Dear all,
> I received the following question and I am not able to aswer as spf
> records are still mysterious to me. We are using BIND 9.7.
> Thanks in advance for your answers,
> Hugo,
> Does our DNS-server support SPF-type records? Or do we put SPF-info
> in a TXT-record? 
> Ref. : 
> Early implementations used TXT records for implementation before the
> new record type was commonly available in DNS software. Use of TXT
> records for SPF was intended as a transitional mechanism. However,
> according to the current RFC, RFC 4408, section 3.1.1, "An
> SPF-compliant domain name SHOULD have SPF records of both RR types. A
> compliant domain name MUST have a record of at least one type," and
> as such, TXT record use is not deprecated.[2] 

BIND does support the SPF type. Note however that the latest draft
version of SPF actually deprecates SPF, and recommends using TXT

3.1.  DNS Resource Records

   SPF records MUST be published as a DNS TXT (type 16) Resource Record
   (RR) [RFC1035] only.  The character content of the record is encoded
   as [US-ASCII].  Use of alternate DNS RR types was supported in SPF's
   experimental phase, but has been discontinued.  See Appendix A of
   [RFC6686] for further information.



More information about the bind-users mailing list