cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

office 365 mail SPF Fail but still delivered

tsula
Copper Contributor

‎Jun 26 2020 01:13 AM - last edited on ‎Feb 06 2023 04:08 AM by

‎Jun 26 2020 01:13 AM - last edited on ‎Feb 06 2023 04:08 AM by

office 365 mail SPF Fail but still delivered

Hello

today i received mail from my organization. i check headers and see that spf failed.

Received-SPF: Fail (protection.outlook.com: domain of mydomain.com does not
designate 67.220.184.98 as permitted sender) receiver=protection.outlook.com;

 

why spffailed mails normally received? 

 

i check SPF at mxtoolbox and SPF is correctly configured.

Labels:
24.4K Views
0 Likes
5 Replies
Reply
5 Replies
Vasil Michev

‎Jun 26 2020 10:06 AM

‎Jun 26 2020 10:06 AM

Re: office 365 mail SPF Fail but still delivered

Failing SPF will not cause Office 365 to drop a message, at best it will mark it as Junk, but even that wont happen in all scenarios.

0 Likes
Reply
Geno_C7

‎Oct 07 2020 10:54 AM

‎Oct 07 2020 10:54 AM

Re: office 365 mail SPF Fail but still delivered

@tsula I solved the problem by creating two Transport Rules. The first one reads the "Received-SPF" line in the header information and if it says "SPF=Fail" it sends the message to quarantine. The second one reads the "Authentication-Results" line in the header information and if it says "Fail" sends the email to quarantine. Hope this helps.

Preview file
31 KB
Preview file
34 KB
2 Likes
Reply
RNalivaika

‎Oct 08 2020 02:52 AM

‎Oct 08 2020 02:52 AM

Re: office 365 mail SPF Fail but still delivered

@tsula firstly, this mostly depends on the spam filtering policy you have configured. Secondly, if your user has the sender's address added to their safe senders list, or sender address is in contacts + contacts are trusted, the message would skip spam filtering and be delivered to inbox.

If you provided a sample message header, we might be able to tell you more.

0 Likes
Reply
davyvaessen

‎Apr 24 2023 01:12 AM - edited ‎Apr 24 2023 01:14 AM

‎Apr 24 2023 01:12 AM - edited ‎Apr 24 2023 01:14 AM

Re: office 365 mail SPF Fail but still delivered

Microsoft please explain how this is designed behavior in this day and age?

 

Sorry, but this is unacceptable!

 

@RNalivaika This is defunct out of the box! The default HAS to be secure and currently it is NOT.

0 Likes
Reply
Kidd_Ip

‎Apr 24 2023 05:41 PM

‎Apr 24 2023 05:41 PM

Re: office 365 mail SPF Fail but still delivered

@tsula 

SPF is just one of the measurement for Email security, you may consider DKIM and DMARC as a whole:

 

Set up SPF to help prevent spoofing - Office 365 | Microsoft Learn

1 Like
Reply