Add an option to SPF Verification to require an SPF record
This option would require senders to have a valid SPF record, so that an SPF result of "NONE" would be equal to an SPF result of "Failure".
Of course, there would have to be a corresponding option to bypass that requirement for authenticated sessions and a whitelist to add in hosts or domain names that for whatever reason can't create or don't yet have an SPF record for that domain.
Thank you for sharing your idea to add an option that would require a sender to have an SPF record configured. You can achieve similar functionality in the current version of MDaemon by enabling the option to Insert ‘Received-SPF’ headers into messages and then use the content filter to check for the existence of these headers. If the header doesn’t exist or has a value of none, you can take action on the message.
Thanks again for suggestion,