> > That's the point I don't understand about punishing dial-up connects. > > Half the world connects to the internet using dial-up accounts! Okay, > > lots of them are using webmailers, but everyone else who is using real > > mail programs is being punished with this high score. Doesn't sound > > fair to me. > > Only a problem for dialups sending directly to the scanning server's > trusted hosts. This is as it should be. It's just hard to get around > for those of us using SMTP AUTH and running SpamAssassin from procmail.
We've been battling with this very issue of avoiding false hits for valid users of the server who send mail to other users on the same server from their local computer (Since the header only shows one hop from their local computer, the same as a spammer who may have done this from their computer directly). We also use procmail for spamc/d and sendmail (for us POP before SMTP authentication via access.db). One idea we had, but we are not sure how to implement it, is to alter the header sendmail creates to include a unique text entry if sendmail knows the sender is a valid user of the system, and then score this unique text with a negative score in spamassassin. This was posted a bit ago as a solution for someone using SMTP_AUTH, but we're trying to see how it could work in sendmail with authenticating via the access.db file as well. Thoughts/opinions? Rob M.
