Hi Marius,
On Wed, 28 Aug 2013, Cyborg wrote:
This works for entire day and night, since one or more years, BUT
randomly, a spam slips throu with the remark, it wasn't scanned at all.
Which is true, as Spamassassins log shows not even the try to check it.
This mußt be true : and{ {!def:spam_score_int}{ eq{$authenticated_id}{} } }
Which means, spam_score_int was not definied.
Conclusion: " spam = nobody/defer_ok" from the first rule was never
executed.
There's is no evidence that exim ever tried it. When i resent the spam i.e.
from a different host, it gets detected as it should be.
As mails get checked, there must be a logical problem in that rule, or exim
does a nice hidden bug with contacting spamd.
It could be that a rule higher up in the ACL accepted the message before
it got to spamd. For example, do you have a rule to allow all
authenticated email? Or all email to a particular domain, or from a
particular host? Without seeing the entire ACL before the spamd rule, it's
difficult to know what to suggest.
Cheers, Chris.
--
_____ __ _
\ __/ / ,__(_)_ | Chris Wilson <[email protected]> Cambs UK |
/ (_/ ,\/ _/ /_ \ | Security/C/C++/Java/Ruby/Perl/SQL Developer |
\__/_/_/_//_/___/ | We are GNU : free your mind & your software |
--
## List details at https://lists.exim.org/mailman/listinfo/exim-users
## Exim details at http://www.exim.org/
## Please use the Wiki with this list - http://wiki.exim.org/
