I recently spotted some reason to finally try to wrap my head around trusted_networks and internal_networks, since forwarded mail falsely triggered RVCD_IN_DNS_MED for -4.0 -- very rare, but still a reason to fix it.
So I set it up like I understand the docs (man page and wiki). My own server, which I got full control of, is internal, the forwarders are trusted (which I do). This however doesn't cut it when looking at the debug logs. We are using lastexternal for Spamhaus Zen -- which nicely checks if the GNOME or ASF forwarders might be listed in PBL... This doesn't seem right. Why do we use lastexternal here? Shouldn't it be like lastuntrusted or something? Worked around by equalizing internal and trusted, but this doesn't feel like a proper solution, nor actually intended. Related bug: RCVD_IN_XBL should use lastexternal https://issues.apache.org/SpamAssassin/show_bug.cgi?id=5294 -- char *t="[EMAIL PROTECTED]"; main(){ char h,m=h=*t++,*x=t+2*h,c,i,l=*x,s=0; for (i=0;i<l;i++){ i%8? c<<=1: (c=*++x); c&128 && (s+=h); if (!(h>>=1)||!t[s+h]){ putchar(t[s]);h=m;s=0; }}}
