> One possibility is to add a SA test which checks on a particular
> Received header field (like some specific internal IP address),
> and conditionalize the other test (using meta rules).
P.S. here is another possibility: let SA know through a header field
about which policy banks were loaded at amavisd. The following
trivial patch is necessary:
--- amavisd.orig Wed Aug 23 21:49:52 2006
+++ amavisd Tue Sep 5 16:13:19 2006
@@ -15128,4 +15128,6 @@
push(@lines, sprintf("X-Amavis-OS-Fingerprint: %s\n",
sanitize_str($os_fp))) if $os_fp ne '';
+ my($pbpath) = c('policy_bank_path');
+ push(@lines, sprintf("X-Amavis-PolicyBank: %s\n",$pbpath)) if $pbpath ne '';
my($mbsl) = c('sa_mail_body_size_limit');
if ( defined $mbsl &&
Then you can add SA rules like:
header L_MYNETS X-Amavis-PolicyBank =~ m{(^|/)MYNETS(/|$)}
score L_MYNETS -0.8
and conditionalize or countermeasure other rules:
meta L_MYNETS_UNDISC_RECIPS UNDISC_RECIPS && L_MYNETS
score L_MYNETS_UNDISC_RECIPS -0.841
score UNDISC_RECIPS 0.841
Mark
-------------------------------------------------------------------------
Using Tomcat but need to do more? Need to support web services, security?
Get stuff done quickly with pre-integrated technology to make your job easier
Download IBM WebSphere Application Server v.1.0.1 based on Apache Geronimo
http://sel.as-us.falkag.net/sel?cmd=lnk&kid=120709&bid=263057&dat=121642
_______________________________________________
AMaViS-user mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/amavis-user
AMaViS-FAQ:http://www.amavis.org/amavis-faq.php3
AMaViS-HowTos:http://www.amavis.org/howto/
