-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
On 4/12/10 12:11 PM, Carlos Mennens wrote:
> On Mon, Apr 12, 2010 at 1:02 PM, Michael Scheidell <[email protected]>
> wrote:
>> then read this part if I somehow confused you.
>>
>> On 4/12/10 12:55 PM, Carlos Mennens wrote:
>>>>
>>>>> other option is set up submit port that only available via vpn, or use
>>>>> smtp
>>>>> auth and give anyone coming in via that -100 points.
>>>>> (amavisd-new can add credit for smtp-auth users)
>
> How would I credit -100 points for someone who is using smtp auth?
> User's should be using TLS and SASL authentication so that should be
> fine. I just need to know how I would configure something of the
> such...
One option is to use amavisd-new to do it as others have mentioned - or
as a more generic method, you can have Postfix add a header and look for
that:
/etc/postfix/helo_add_auth_header.regexp :
/.*/ PREPEND X-SMTP-Auth: not_on_myhost
/etc/mail/spamassassin/local.cf:
header __NO_SMTP_AUTH X-SMTP-Auth =~ /not_on_myhost/
meta SMTP_AUTH ( __NO_SMTP_AUTH < 1 )
describe SMTP_AUTH Message sent using SMTP Authentication
tflags SMTP_AUTH nice
score SMTP_AUTH -5
and then on the end of your smtpd_recipient_restrictions in main.cf:
check_client_access pcre:/etc/postfix/helo_add_auth_header.regexp
SMTP Auth connections get ok'd before the regexp file is matched, and
they never get the header, and then spamassassin sees that and gives a
- -5 credit.
- --
David Morton <[email protected]>
Morton Software & Design http://www.dgrmm.net - Ruby on Rails
PHP Applications
Maia Mailguard http://www.maiamailguard.com - Spam management
for mail servers
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.7 (Darwin)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/
iD8DBQFLw2CNUy30ODPkzl0RAiwTAJ0c01qY5S/TGJEihJNnXHW9ljPJ2QCgrQ78
WOO94Is1oj/CBYPftPK02B8=
=drjQ
-----END PGP SIGNATURE-----
