nanog mailing list archives

Re: amazon.com multiple SPF records

From: Alec Peterson <ahp () hilander com>
Date: Mon, 7 Jun 2021 07:35:23 -0700

Hmm, are you sure?

[ec2-user@ip-10-0-0-50 ~]$ dig amazon.com txt +short|grep spf
"v=spf1 include:spf1.amazon.com include:spf2.amazon.com include:
amazonses.com -all"
"spf2.0/pra include:spf1.amazon.com include:spf2.amazon.com include:
amazonses.com -all"
[ec2-user@ip-10-0-0-50 ~]$

On Mon, Jun 7, 2021 at 7:22 AM Brad Barnett <lists () l8r net> wrote:


If anyone at Amazon is paying attention, you have duplicate spf1 records
for amazon.com:

# dig -t TXT amazon.com | grep spf
amazon.com.             281     IN      TXT     "spf2.0/pra include:
spf1.amazon.com include:spf2.amazon.com include:amazonses.com -all"
amazon.com.             281     IN      TXT     "v=spf1 include:
amazon.com include:spf1.amazon.com include:spf2.amazon.com include:
amazonses.com -all"
amazon.com.             281     IN      TXT     "v=spf1 include:
spf1.amazon.com include:spf2.amazon.com include:amazonses.com -all"

It's causing mail deliverability issues, so users cannot reset their
password, or even get OTP codes reliably.

(I don't know where else to post, as whois/arin contacts aren't
responding, and I can't even imagine trying to go through other methods
of support...)

Current thread:

amazon.com multiple SPF records Brad Barnett (Jun 07)
- Re: amazon.com multiple SPF records Josh Luthman (Jun 07)
- Re: amazon.com multiple SPF records Stephane Bortzmeyer (Jun 07)
- Re: amazon.com multiple SPF records Alec Peterson (Jun 07)
  - RE: amazon.com multiple SPF records Jean St-Laurent via NANOG (Jun 07)
    - Re: amazon.com multiple SPF records Bjørn Mork (Jun 07)
    - Re: amazon.com multiple SPF records Matthew V (Jun 07)
    - RE: amazon.com multiple SPF records Jean St-Laurent via NANOG (Jun 07)
    - Re: amazon.com multiple SPF records Jonathan Leist via NANOG (Jun 07)