Hi, >> Does this still present a significant threat these days, or is it okay >> to permit partial messages? > > I don't know of any malware that uses message/partial, but it's > still true that partial messages cannot be effectively scanned by > the MTA. > >> If I were to permit it for a specific IP address or sender, would that >> be done in a check_sender_access hash? > > There is no bypass mechanism for header_checks. If someone must > send you message/partial content, they will either need to use an > alternate channel or you'll need to remove that check (or use HOLD > for manual inspection rather than REJECT). > > I would personally judge the risk as fairly low, but you'll need to > decide that for yourself.
Yeah, I was also thinking it was safe to remove. Searched the logs going back almost a month, and not a single message rejected for this reason. I've removed it. Thanks, Alex
