Given (a) you disabled RBL checks in SA
On 25.08.14 19:06, Reindl Harald wrote:
the reason for that is that postfix in front already does a damned good job with RBL's
since SA uses deep header scanning in many times, which postfix does not (afaik), it's always better to NOT disable RBL's as SA level.
and especially uses internal whitelists (rbldnsd) and a honeypot RBL and what i want to avoid is that that SA beats out the whitelists
...and SA can use whitelists too.
- i replay the data of the internal ones to "local.conf" into "trusted_networks" because until now i did not find a way to reflect the postscreen scoring below in SA
putting IPS/ranges into trusted_networks is NOT whitelisting. It just pushes RBL checking to next headers. you have done "good" job by preventing SA from hitting rules and increasing score, and now you are complaining about low scores... silly. -- Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/ Warning: I wish NOT to receive e-mail advertising to this address. Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu. Silvester Stallone: Father of the RISC concept.
