Rolf, > Does it mean http://spamassassin.apache.org/tests_3_3_x.html needs a > correction of the score (1) for these tests?
I guess so. Not sure where these scores came from. Anyway, that page is just a development/testing tool, don't worry too much about it. What matters is the score in your configuration files, either defaults, or overridded. And not to forget sa-update. > I am pleased to see that the ADSP tests can be recognized by their name > and that DKIM itself and ADSP are not mixed up. I'm quite fond of the adsp_override command, it breaks the chicken and the egg problem of who will dare to publish its ADSP in DNS, knowing that few recipient sites currently bother to check it. > > and means that at least one signature is valid. > > Since we have no information at this point on the reputation > > of a signer, its score is very low too, but can serve in meta > > rules to contribute good score to reputable signers I should have mentioned there exists an easier way to make use of the 3.3 DKIM eval rules for the purpose of manually assigning reputation score points. Two examples (wrapped for clarity, a rule should be in single line): full DKIM_VALID_YG eval:check_dkim_valid(gmail.com, googlemail.com, googlegroups.com, yahoogroups.com, .yahoo.com, .yahoo.ca, .yahoo.de, .yahoo.fr, .yahoo.in, .yahoo.co.in, .yahoo.co.jp, .yahoo.co.nz, .yahoo.co.uk, .yahoo.com.hk, .yahoo.com.ph, .yahoo.com.vn) score DKIM_VALID_YG -0.5 full DKIM_VALID_WEGAME eval:check_dkim_valid(email.wegame.com) score DKIM_VALID_WEGAME -8 The above is similar in purpose to whitelist_from_dkim, but offers a full control over score points attributed to each signing domain in valid DKIM (or DK) signatures. Mark
