Re: [AMaViS-user] bypass spam checking outgoing email

Fri, 14 Jul 2006 08:36:51 -0700 

--On July 14, 2006 8:10:28 AM -0600 Gary V <[EMAIL PROTECTED]>
wrote:

> Oenus wrote:
> 
>> Hi there!
> 
>> We have a server runing postfix + amavisd-new (SuSE 10.1). We are
>> very happy with the spam filtering capabilities of amavisd-new,
>> but we would like to disable checking against sbl, xbl lists (any
>> kind of lists actually) only for outgoing email, since sometimes
>> our users might be in a public place (i.e internet cafe, public
>> hotspot), and their IP might be in a CBL list, thus preventing
>> them to send emails with this configuration.
> 
>> Is it possible to disable these rules only for outgoing email?
> 
>> TIA
>> Ignacio
> 
> For external clients I think the easiest way is to have them connect
> on a different port, and set up that port to use a policy bank that
> bypasses spam checks.
> 
> You could configure SASL AUTH with TLS, then in master.cf:
> 
> smtps    inet  n       -       -       -       -       smtpd
>         -o smtpd_tls_wrappermode=yes
>         -o content_filter=smtp-amavis:[127.0.0.1]:10027
>         -o smtpd_sasl_auth_enable=yes
>         -o
> smtpd_client_restrictions=permit_sasl_authenticated,reject
> 
> in amavisd.conf:
> 
> $inet_socket_port = [10024,10027];
> 
> $interface_policy{'10027'} = 'BYPASSSPAM1';
> $policy_bank{'BYPASSSPAM1'} = {
>  bypass_spam_checks_maps   => [1],  # don't spam-check this mail
>  bypass_banned_checks_maps => [1],  # don't banned-check this mail
>  final_spam_destiny => D_PASS,
>  final_banned_destiny=> D_PASS,
> };
> 
> 
> Gary V

If you trust your own people then don't even check outgoing mail.  In
postfix's master.cf

111.222.333.444:8825 inet  n       -       n       -       25
smtpd
        -o content_filter=

Configure your clients to send on 8825 or whatever you want (some
versions of out look will only allow 4 digit port numbers, go
figure).  My users can mail from anyplace in the world using AUTH+TLS
no problems.  I save some CPU overhead by not checking their outgoing
mail.

-- 
ESP



-------------------------------------------------------------------------
Using Tomcat but need to do more? Need to support web services, security?
Get stuff done quickly with pre-integrated technology to make your job easier
Download IBM WebSphere Application Server v.1.0.1 based on Apache Geronimo
http://sel.as-us.falkag.net/sel?cmd=lnk&kid=120709&bid=263057&dat=121642
_______________________________________________
AMaViS-user mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/amavis-user
AMaViS-FAQ:http://www.amavis.org/amavis-faq.php3
AMaViS-HowTos:http://www.amavis.org/howto/

Reply via email to