Matthew Lenz wrote:
1. do you control the IPs that your dial-up users are connecting from
no.. they all connect from various isp's.
3. can you obtain enough pain medication to get them all to convert to
auth'd SMTP connections?
heh I thought about implementing it .. maybe i still can at some point.
Well, you're in the no-fun group then. If you could do smtp auth SA
would automatically extend the trust boundary for you -- problem solved.
Your easiest option is to abandon SPF and tell your users to use their
own ISP's smarthost.
Another option is to find a way (that will vary depending on how you
call SpamAssassin) to bypass SA checks for the POP before SMTP users.
Finally, you could modify the AccessDB plugin in 3.1 to extend trust
rather than penalize mail from hosts found with "bad" flags in the DB.
If I get sufficiently bored and find enough food I may look into this
sometime.
Daryl
