> On 07.11.10 10:53, Martin Toombs wrote: > > I have a Postfix/Dovcot/SpamAssassin setup with TSL required for all > > SMTP users in the domain. > > > > Is there a way I can globally whitelist any mail received from a > secured > > connection? > > Not yet and I don't think it's a wise idea. I'm going to allow outgoing > TLS connections on our mailserves once, I already did on my machine. > > As anything other, it can be useful in meta rules
Matus, doesn't he only need to define msa_networks ? Martin uses postfix + dovecot, so I guess authenticated mail gets appropriately marked in the 'received:' header. Does using TLS makes any change to this reasoning? Giampaolo > > Obviously any spam we get comes from outside the domain. I'm thinking > > whitelisting our entire domain would still leave us open to falsified > > e-mail headers. > > precisely. but whitelisting tls'ed connections could do something > similar. > > -- > Matus UHLAR - fantomas, [email protected] ; http://www.fantomas.sk/ > Warning: I wish NOT to receive e-mail advertising to this address. > Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu. > Chernobyl was an Windows 95 beta test site.
