Too bad it's a bit confusing. Pobox.com has a handy wizard to help you piece a proper SPF record together:
Most domains send outbound mail through a relatively small number of servers. Domains should describe that set of servers in an SPF record in their DNS. Internet email receivers can then reject forged messages which don't come from an envelope sender domain's approved servers.
[ The SPF Setup Wizard ]
I've tried to determine where all of my mail might be coming from, and added my first SPF TXT records to the davidkearns.com and geekprime.com domains. I'm also taking the step on a few of my less used domains (dak4.com, k34rnz.com, yatyanddavid.com, etc.) of adding a very restrictive "v=spf1 a mx ~all" SPF record. My hope is that this will cut down on a large part of the undeliverable email messages that I get each day. If not, perhaps I'm just being a better netizen.
Anyone else jumping on the SPF bandwagon?
dasBlog theme modified from "mads simple" theme by Mads Kristensen
Disclaimer The opinions expressed herein are my own personal opinions.