Matthew Dickinson wrote:
When sending messages from clients using SMTP Auth to a server running
sendmail, I'm seeing issues with SPF and Botnet thinking these messages are
spam-like - I'm not sure if this issue lays with SA or with sendmail itself.
The issue is with SA, sendmail is an innocent bystander.
SA: do you have trusted_networks set correctly?
Botnet: do you have "botnet_pass_auth 1" set?
SPF shouldn't have triggered, looks like a problem with trusted_networks.
The best way to figure this out is by running `spamassassin -x -D -t < test.eml`
and look for the trusted pseudo-headers (X-Spam-Relays-Untrusted,
X-Spam-Relays-Internal, X-Spam-Relays-External) and lines like:
[824] dbg: received-header: relay 200.52.129.137 trusted? yes internal? yes
The below message is sent from a (broken) Cingular 8125 phone, hence the no
RDNS.
Matthew
Received: from Inbox ([166.216.69.130]) (authenticated bits=0) by
server.domain.org (8.12.11.20060308/8.12.11) with ESMTP id l4HJRKUm015411
(version=TLSv1/SSLv3 cipher=RC4-MD5 bits=128 verify=NO) for
<[EMAIL PROTECTED]>; Thu, 17 May 2007 14:27:29 -0500 Message-Id:
<[EMAIL PROTECTED]> MIME-Version: 1.0 From:
Matthew Dickinson <[EMAIL PROTECTED]> Subject: Test message Date: Thu, 17 May
2007 14:28:00 -0500 Importance: normal X-Priority: 3 To: <[EMAIL PROTECTED]>
Content-Type: text/plain; charset="iso-8859-1" X-Virus-Scanned: ClamAV
version 0.88.7, clamav-milter version 0.88.7 on server.domain.org
X-Virus-Status: Clean X-Spam-Status: No, score=2.5 required=5.0
tests=AWL,BAYES_50,BOTNET,
BOTNET_NORDNS,DKIM_POLICY_SIGNSOME,DK_POLICY_SIGNSOME,MISSING_MID,RDNS_NONE,
SPF_FAIL shortcircuit=no autolearn=no version=3.2.0 X-Spam-Level: **
X-Spam-Checker-Version: SpamAssassin 3.2.0 (2007-05-01) on server.domain.org
Content-Transfer-Encoding: 8bit X-MIME-Autoconverted: from quoted-printable
to 8bit by server.domain.org id l4HJRKUm015411
--
René Berber
