On Tue, 25 Oct 2011 11:21:07 +0200, Robert Schetterer wrote:
you should choose another way for whitelisting, i.e bypass spamassassin for trusted server ips etc anyway why not using i.e. whitelist_from *@somebody.co ?
this open forges to numbers of equal senders recipient, never seen in my logs, so if mta is not checking sender auth then dont use whitelist_from, its safe to use whitelist_auth