Mathias Koerber <[EMAIL PROTECTED]> writes: > There are two tests I would like to use to whitelist incoming email. > > a) If it's References: or In-Reply-To: header matches a Message-ID > of a mail sent out through my server. This would require
The main reason I haven't checked this in is because it's defeatable by spammers. > a) recording M-IDs of outgoing emails ina formail -D > manner > b) expiring M-IDs from that list based on available > database-size and/or time in the DB > c) checking incoming email against that list See http://bugzilla.spamassassin.org/show_bug.cgi?id=1314 > b) if incoming PGP/GPG-signed email has a matching public key > in a keyring accessible by SpamAssassin (or MailScanner) Seems like a waste of time. ;-) > Has anyone implemented anything like this? Any hints on how to > best go about this? Or any other opinion on these (eg why these > may be bad ideas)? I have the former... it needs to be turned into a plugin. That's the only way to do it now. -- Daniel Quinlan http://www.pathname.com/~quinlan/
