On Apr 22, 2011, at 9:24 AM, Eric Shubert <[email protected]> wrote:
> On 04/20/2011 02:51 PM, Scott Hughes wrote:
>> I have noticed on some emails that when SIMSCAN refers the email to
>> Spamassassin, the domain name gets changed, like so (from the
>> Spamassassin log):
>>
>> > 2011-04-20 13:55:32.757156500 Apr 20 13:55:32.751 [17877] info: spamd:
>>
>> > result: . 3 -
>>
>> > HTML_MESSAGE,MIME_QP_LONG_LINE,RCVD_NUMERIC_HELO,RDNS_NONE,SARE_GIF_AT
>>
>> > TACH,T> _FILL_THIS_FORM_SHORT
>>
>> > scantime=6.0,size=11089,user=clamav,uid=89,required_score=3.7,rhost=lo
>>
>> calhost.localdomain,raddr=127.0.0.1,rport=34733,mid=<006301cbff8c$49186170$db492450$@com>,autolearn=no
>>
>> The domain name (in red) was supposed to be ‘ncm20.com’. I have not yet
>> seen any other changed, but I’ll keep looking. Where this causes a
>> problem is if you have a whitelist_from entry set up in your local.cf.
>> Since it doesn’t match that whitelist entry, it doesn’t get whitelisted.
>>
>> Scott
>>
>
> Alexey's post on the devel list just made me think of this. Are these senders
> that SRS has rewritten, and thus mangled such that SA doesn't know the domain
> name?
>
> --
> -Eric 'shubes'
>
>
> ------------------------------------------------
I do not recall. I'll check on it.
Scott
---------------------------------------------------------------------------------
Qmailtoaster is sponsored by Vickers Consulting Group
(www.vickersconsulting.com)
Vickers Consulting Group offers Qmailtoaster support and installations.
If you need professional help with your setup, contact them today!
---------------------------------------------------------------------------------
Please visit qmailtoaster.com for the latest news, updates, and packages.
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
