Hello Thomas, thanks for your good description. Now i have too use DKIM in my setup with postfix and amavisd-new. I have a little problem with the setup. I use since years ASSP (Anti Spam SMTP Proxy) and wont miss it. I only like to use amavisd for the DKIM and Antivirus stuff.
My Setup is now: Internet -> ASSP -> Postfix -> ASSP -> Internet Get the Emails on Port 25,465,587 in ASSP and send it to Postfix on Port 10025 In the /etc/services is asspsmtp 10025/tcp mail asspssmtp 10026/tcp in /etc/postfix/master.cf asspsmtp inet n - - - - smtpd -v #asspsmtpd inet n - - - - smtp I have setup letsencrypt certs in ASSP and Postfix. This configuration worked well so far. I read the Amavisd default uses port 10025 I shifted the ASSP Port to 10035 and 10036 but it doesent work. ASSP and Postfix cant get a connection on 10035 I do not understand what's going on. How can I add Amavisd when I leave ASSP on port 10025 Do i have to add something in /etc/services? Thanks for Help Christian Am 23.08.2016 um 14:34 schrieb Thomas Eckardt: >> On outgoing the spam sender is whitlisted > > forwarded mails out->in(FW)->out should be detected as redlisted mail by > assp (redRe) > redlisted mails never contributes to whitelist additions > >> After a time >> Web.de is blocking my Server IP. >> Whats happend? > > This depends on the forwarding mechanism of your mail server/client. > Forwarding an email, is a bad idea. If your mail server (client) provides > a 'send a copy to' , use this mechanism. > Let's say, the original mail was from gmail.com - it is forwarded to > web.de through your server. Think about, what web.de sees: an email from > gmail.com sent by your IP - web.de checks SPF -> fail! Your server or > client modifies the mail subject (FW: is added for example) -> web.de > checks the DKIM signature -> fail. Your server/client removes the DKIM > signature - web.de knows, gmail has to have one -> fail. Worst case - spam > is forwarded - web.de detects spam from your IP - report goes to > RBL-providers - your IP will get globaly blacklisted after some time! > > I don't know, if web.de provides a whitepaper, how emails should be > forwarded to them. There are several X-MIME headers that can be used to > tag forwarded mail (like: X-Forwarded-For), but like all X-MIME headers - > there is no 'have to' or 'must' - only a 'can'. It is allowed to ignore > them all. > > An safe way to forward is: > - use the local account as envelope sender > - replace the from header address by the local account > - put the original from address in to the 'Sender:' header line > - possibly add the 'X-Forwarded-For' header > - remove all DKIM or DomainKey signatures > - remove all SMIME signature parts > > Someone would say: SRS is developed for this forwarding to solve the SPF > failure - Yes, this is true, but I don't know any implementation for SRS > at any of the large email providers. > > Thomas > > > > Von: Christian Leicht <use...@schani.com> > An: For Users of ASSP <assp-user@lists.sourceforge.net> > Datum: 23.08.2016 13:35 > Betreff: [Assp-user] spam an forwarded email > > > > Hello, > what can i do ? > Some of my users get spam an (auto)forward all emails to a web.de > Emailaddress. On outgoing the spam sender is whitlisted. After a time > Web.de is blocking my Server IP. > Whats happend? > Thanks for a tipp > > Christian > > ------------------------------------------------------------------------------ > _______________________________________________ > Assp-user mailing list > Assp-user@lists.sourceforge.net > https://lists.sourceforge.net/lists/listinfo/assp-user > > > > > > > DISCLAIMER: > ******************************************************* > This email and any files transmitted with it may be confidential, legally > privileged and protected in law and are intended solely for the use of the > > individual to whom it is addressed. > This email was multiple times scanned for viruses. There should be no > known virus in this email! > ******************************************************* > > > > > ------------------------------------------------------------------------------ > > > > _______________________________________________ > Assp-user mailing list > Assp-user@lists.sourceforge.net > https://lists.sourceforge.net/lists/listinfo/assp-user > ------------------------------------------------------------------------------ _______________________________________________ Assp-user mailing list Assp-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/assp-user
