SPF dns lookup nagios check

check-spf.py

#!/usr/bin/env python
#
# usage: ./check-spf.py domain.com
#
# author: [email protected]
#
#


import sys

try:
    import dns.resolver
except:
    print "Need to install dnspython"
    sys.exit(1)
    
resolves = 0

def doResolve(host):
    global resolves

    answers = dns.resolver.query(host, 'TXT')
    resolves += 1
    for rdata in answers:
        for part in str(rdata).replace("\" \"", "").split():
            if "include" in part:
                doResolve(part.split(":")[1])
            elif part in ["a", "mx", "ptr", "exists"]:
                resolves += 1

answers = dns.resolver.query(str(sys.argv[1]), 'TXT')
for rdata in answers:
    for part in str(rdata).replace("\" \"", "").split():
        if "include" in part:
            doResolve(part.split(":")[1])
        elif part in ["a", "mx", "ptr", "exists"]:
            resolves += 1


if resolves > 10:
    print "CRITICAL: Above the 10 allowed resolutions for SPF. You are at %i" % resolves
    sys.exit(2)

print "OK: Below the 10 allowed resolutions for SPF. You are at %i" % resolves
sys.exit(0)