[Bug 4055] New: ALL_TRUSTED on almost everything if server in internal network and trusted_networks not set

29 Dec 2004 11:37:30 -0000 

http://bugzilla.spamassassin.org/show_bug.cgi?id=4055

           Summary: ALL_TRUSTED on almost everything if server in internal
                    network and trusted_networks not set
           Product: Spamassassin
           Version: 3.0.2
          Platform: PC
        OS/Version: Linux
            Status: NEW
          Severity: normal
          Priority: P5
         Component: Rules (Eval Tests)
        AssignedTo: [email protected]
        ReportedBy: [EMAIL PROTECTED]


My server, statek.batory.org.pl, self-resolves to 192.168.30.1, an address in
internal network. In this configuration, when no trusted_network option is set,
it seems that entire internet is trusted.

Debug messages from "spamassassin -D -t" of "trusted" spam message follows:

debug: SpamAssassin version 3.0.2
debug: received-header: parsed as [ ip=195.137.248.130 rdns=ns1.webheberg.com
helo=smtp2.webheberg.com by=statek.batory.org.pl ident= envfrom= intl=0
id=iBT04Urw023440 auth= ]
debug: is Net::DNS::Resolver available? yes
debug: Net::DNS version: 0.48
debug: is DNS available? 1
debug: IP is reserved, not looking up PTR: 192.168.1.19
debug: received-header: parsed as [ ip=192.168.1.19 rdns=
helo=http9.webheberg.com by=smtp2.webheberg.com ident= envfrom= intl=0 id= 
auth= ]
debug: looking up A records for 'statek.batory.org.pl'
debug: A records for 'statek.batory.org.pl': 192.168.30.1
debug: received-header: 'by' statek.batory.org.pl has reserved IP 192.168.30.1
debug: received-header: 'by' statek.batory.org.pl has no public IPs
debug: received-header: relay 195.137.248.130 trusted? yes internal? no
debug: received-header: 'from' 192.168.1.19 has reserved IP
debug: received-header: 'from' 192.168.1.19 is near to first 'by'
debug: received-header: relay 192.168.1.19 trusted? yes internal? no
debug: metadata: X-Spam-Relays-Trusted: [ ip=195.137.248.130
rdns=ns1.webheberg.com helo=smtp2.webheberg.com by=statek.batory.org.pl ident=
envfrom= intl=0 id=iBT04Urw023440 auth= ] [ ip=192.168.1.19 rdns=
helo=http9.webheberg.com by=smtp2.webheberg.com ident= envfrom= intl=0 id= 
auth= ]

As you can see an IP 195.137.248.130 is considered trusted and it definately
should not be.

In my opinion when the server address is in internal network then we should not
trust anything but internal network.

Workaround: set trusted_networks

System specs:
linux-2.2.6
perl-5.8.3



------- You are receiving this mail because: -------
You are the assignee for the bug, or are watching the assignee.

Reply via email to