Good idea, but is it really that simple? I would only want to do this for the top Received header - if I test all headers a spoofed auth header can bypass spamassassin. Is there a way to make the pattern match only the first Received and then check it for AUTH?
I realize by adding the example.com test we are narrowing it down to at least a targetted spoof - but why not shoot for perfection eh? Thanks Gord! m/ -----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Behalf Of Gordon Messmer Sent: Tuesday, January 06, 2004 6:06 PM To: [EMAIL PROTECTED] Subject: Re: [courier-users] Seeming issue between SA & courier... WAS RE: [SAtalk] RCVD_IN_DYNABLOCK,RCVD_IN_SORBS in 2.61 when sending myself a test message? Mitch (WebCob) wrote: > > My first concern is that apparently due to the differences in courier's vs > sendmails Received header formats, the first courier header is not always > detected. Secondly, if I am sending to another user in my own system via > authenticated SMTP, the rule still triggers - even though my authentication > on the server should allow me some sort of "whitelist" like status (my > humble opinion). Configure maildrop not to pass messages that were AUTH'd to spamassassin: if( ! ( /Received: .*\(AUTH: [^)]*\) *by [:alnum:]*.example.com/ ) ) { xfilter "/usr/bin/spamc" } ------------------------------------------------------- This SF.net email is sponsored by: IBM Linux Tutorials. Become an expert in LINUX or just sharpen your skills. Sign up for IBM's Free Linux Tutorials. Learn everything from the bash shell to sys admin. Click now! http://ads.osdn.com/?ad_id=1278&alloc_id=3371&op=click _______________________________________________ courier-users mailing list [EMAIL PROTECTED] Unsubscribe: https://lists.sourceforge.net/lists/listinfo/courier-users ------------------------------------------------------- This SF.net email is sponsored by: IBM Linux Tutorials. Become an expert in LINUX or just sharpen your skills. Sign up for IBM's Free Linux Tutorials. Learn everything from the bash shell to sys admin. Click now! http://ads.osdn.com/?ad_id=1278&alloc_id=3371&op=click _______________________________________________ courier-users mailing list [EMAIL PROTECTED] Unsubscribe: https://lists.sourceforge.net/lists/listinfo/courier-users
