http://bugzilla.spamassassin.org/show_bug.cgi?id=4436
[EMAIL PROTECTED] changed:
What |Removed |Added
----------------------------------------------------------------------------
Status|NEW |RESOLVED
Resolution| |FIXED
------- Additional Comments From [EMAIL PROTECTED] 2005-06-27 18:29 -------
hi Martin --
you're partly right. not entirely though ;)
you're correct that X-Originating-IP etc should be considered for
untrusted/firsttrusted tests, and that patch is now applied (updated for 3.1.0)
to svn trunk.
However, looking at the trusted_networks line you posted, that still won't have
the desired effect-- you have to trust *all* servers along the path from your
server to the poster, e.g.:
trusted_networks 213.165.64.20 216.155.201/24 66.218/16 130.60.28.29
this is because otherwise, [216.155.201.60] could have been a spammer pretending
to be a Yahoo server, and all Received lines prior to that one could have been a
forgery. So unless [216.155.201.60] is also trusted, no hosts prior to that can
be trusted because the Received lines themselves are not trustworthy.
anyway, that fix is now in trunk. closing...
Sending lib/Mail/SpamAssassin/EvalTests.pm
Transmitting file data .
Committed revision 202109.
------- You are receiving this mail because: -------
You are the assignee for the bug, or are watching the assignee.
