McAfee Security for Microsoft Exchange 8.6.0

Using Anti-spoofing protection

Email spoofing is a common ploy used to attract users by changing the sender email address, coaxing them to open and respond to emails without knowing that the email is not actually from the legitimate source.

MSME now supports anti-spoofing using the Sender Policy Framework (SPF) mechanism from Internet Engineering Task Force. The SPF framework is based on RFC 7208 that authorizes use of domain names in emails.

Based on the SPF evaluation of the sender domain, the result is categorized as:
None Softfail
Neutral Temperror
Pass Permerror
Fail or Hard fail

Using the SPF Filter, you can configure actions for soft fail and hard fail. To reduce false positives, MSME considers the remaining categories as pass. When SPF is enabled, you can view the SPF result in the email header for Received-SPF.