Monthly Archives: February 2009


Always Think About Ways To Sell Your Brand

Our next door neighbor has had a tree service working at his house for the past couple of days. They are trimming trees, cutting down trees, and removing fallen branches. It’s not quiet work, so all the surrounding neighbors know what’s happening.

And we’re all thinking the same thing: “Oh! I should really […]

By | February 27th, 2009|General|0 Comments

Setting Up SPF, SenderId, Domain Keys, and DKIM

If you run a mail server, and if you hate spam, you should setup your mail server to make use of all the best anti-spam tools available. There are two sides to spam, sending and receiving.

On the receiving side, you have things like blacklists, spamassassin, bayesian filtering, and lots more. I’ll probably cover this side of things in greater depth in another post.

On the sending side, first and foremost, you have to ensure your server is not acting as an open relay, and allowing spam to be sent through it. After that’s done, you want to be sure that e-mail you send isn’t flagged as spam by people receiving it. And, being a good e-mail citizen, you you want to support the anti-spam standards that are out there.

There are four primary standards for verifying senders and servers.

Sender Policy Framework (SPF) – from their FAQ:

Sender Policy Framework (SPF) is an attempt to control forged e-mail. SPF is not directly about stopping spam – junk email. It is about giving domain owners a way to say which mail sources are legitimate for their domain and which ones aren’t. While not all spam is forged, virtually all forgeries are spam. SPF is not anti-spam in the same way that flour is not food: it is part of the solution.

SenderId – a Microsoft technology which is very similar to SPF:

The Sender ID framework, developed jointly by Microsoft and industry partners, addresses a key part of the spam problem: the difficulty of verifying a sender’s identity.

DomainKeys – from Wikipedia:

DomainKeys is an e-mail authentication system designed to verify the DNS domain of an e-mail sender and the message integrity.

DKIM – an evolved form of DomainKeys, from Wikipedia:

DKIM uses public-key cryptography to allow the sender to electronically sign legitimate emails in a way that can be verified by recipients. Prominent email service providers implementing DKIM (or its slightly different predecessor, DomainKeys) include Yahoo and Gmail. Any mail from these domains should carry a DKIM signature, and if the recipient knows this, they can discard mail that hasn’t been signed, or that has an invalid signature.

SenderId is primarily used by Microsoft mail services like Hotmail/MSN, while DomainKeys and DKIM are primarily used by Yahoo. SPF is used by many mail services.

I’m going to walk you through setting up these anti-spam technologies. I will be setting them up for my domain,, and using my mail server, which is postfix running on Debian. Your setup and requirements may vary.

By | February 23rd, 2009|Linux, Spam|63 Comments

Website Checklist

There is a fantastic Website Checklist over at the Box UK blog site, which I’ve copied into a simple image here.
Website Checklist

It’s funny, I’ve worked with close to 100 companies on their websites and web applications to one degree or another, and none […]

By | February 22nd, 2009|General|0 Comments

Get 4 Free Tech Books and Give $29.95 for Aus bushfire relief!

Sitepoint is offering a “Get 5 eBooks for the price of one” sale with 100% of the proceeds going to support the victims of the Australian bushfire.

It’s a good cause, and a great deal. I’m sure you’ll be able to find 5 books that will give you more than $29.95 worth of […]

By | February 10th, 2009|General|1 Comment