On 16 Jun 2019, at 20:16, @lbutlr wrote:
On 16 Jun 2019, at 17:01, David Jones <djo...@ena.com> wrote:
Find the header being added by your Postfix MTA and add a rule to
subtract points for authenticated senders. It should have "ESMTPSA"
when sent by an authenticated account.
The header postfix added was in the first post and does not have
ESMTPSA in it
header LOCAL AUTH_SENDER Received =~ /\.example\.com
\(Postfix\)
with ESMTPSA/
score LOCAL_AUTH_SENDER -4.0
Also, try adding that IP to your internal_networks and see how the
scoring changes:
internal_networks 73.14.161.160
And that IP is in spamass-milter in a -i directive.
/usr/local/sbin/spamass-milter -f -p /var/run/spamass-milter.sock -u
spamd -e -i 65.121.55.40/29 -i 73.14.161.160 -i 127.0.0.1 -r 10
So it should never have tagged the email in the first place, right?
Based solely on reading the man page for spamass-milter, I think you are
right. However, I think you should try collapsing the -i arguments into
just one comma-delimited list, to see if that form actually works as
expected. You might want to use the support resources at
http://savannah.nongnu.org/projects/spamass-milt/ to get help, since
spamass-milter isn't part of the SA project.
I also recommend setting trusted_networks, internal_networks, and
msa_networks correctly and requiring authenticated submission such that
SA can identify trusted mail rather than skip it.
--
Bill Cole
b...@scconsult.com or billc...@apache.org
(AKA @grumpybozo and many *@billmail.scconsult.com addresses)