Date: Sun, 24 Oct 2010 16:04:37 -0700 From: Chuck Swiger <cswiger@mac.com> To: Marwan Sultan <dead_line@hotmail.com> Cc: FreeBSD Questions <freebsd-questions@freebsd.org> Subject: Re: My mail server flagged spam! Message-ID: <862FF685-63B1-47B1-9376-25D9FC2424C9@mac.com> In-Reply-To: <SNT103-W34FB0435E3009DB807CDF79A400@phx.gbl> References: <SNT103-W395850DA5D1C7E9488FB919A5D0@phx.gbl> <4CBFD2AE.7080402@infracaninophile.co.uk> <SNT103-W52F6B6EA05DD5995B51C419A5F0@phx.gbl> <891526E2-A52F-4FF5-B1A6-FFF91883E952@mac.com> <SNT103-W34FB0435E3009DB807CDF79A400@phx.gbl>
next in thread | previous in thread | raw e-mail | index | archive | help
On Oct 24, 2010, at 3:28 PM, Marwan Sultan wrote: [ ... ] > Now to avoid the 2.8 DOS_OE_TO_MX Delivered direct to MX with OE headers error.. > shall i add my domains MX records to local.cf as > trusted_networks mail.domain.com > or as > internal_networks mail.domain.com ? Please see: http://spamassassin.apache.org/full/3.3.x/doc/Mail_SpamAssassin_Conf.html#network_test_options http://wiki.apache.org/spamassassin/TrustPath "Why should trusted_networks and internal_networks ever be different? A mail relay that you want to trust in trusted_networks may itself trust its own internal dynamic IP networks. You may trust them not to be a spam source but putting them into your internal_networks list would create a false positive because then those dynamic IPs would be searched for in the DUL lists. This is an example where the two lists need to be different." If need be, also consider whitelist_from_rcvd (or maybe whitelist_auth if you implement SPF or DKIM). I'm also told that something like: meta AUTHD_RELAY !__LAST_UNTRUSTED_RELAY_NO_AUTH describe AUTHD_RELAY Message submission was via an authenticated user score AUTHD_RELAY -10 I believe there is even an optional patch in the spamass-milter port: http://www.freebsd.org/cgi/cvsweb.cgi/ports/mail/spamass-milter/files/extra-patch-addauth?rev=1.2 ...but it is probably better to just tweak the scoring a bit. Or switch to using amavisd-new, which could allow greater flexibility also.... Regards, -- -Chuck
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?862FF685-63B1-47B1-9376-25D9FC2424C9>