On Fri, Dec 25, 2009 at 03:58:36PM -0500, Alex wrote:
> Hi,
>
> >> @bypass_virus_checks_acl = qw( mail.corpAdomain.com .mail.corpAdomain.com
> >> );
> >> @bypass_spam_checks_acl = qw( mail.corpAdomain.com .mail.corpAdomain.com );
> >> @local_domains_acl = ( "." ); # all domains
> >
> >> What could I be missing? Please let me know if any further information
> >> is necessary to help troubleshoot this.
> >
> > If you've set "content_filter=" in main.cf then all mails passes
> > amavisd. So you must define some exceptions...
>
> Hmm.. I guess I don't doubt you, but is this really the only way? How
> about for system mail, such as from cron or otherwise? How about mail
> simply originating from the host itself? Is there no way to definitely
> tell that it's from the local host and not scan it?
If you set content_filter only on specific Postfix processes in
master.cf rather than main.cf, it becomes easy to do this. You can
simply put it on the public smtp listener and not on the pickup
process, you can have an smtp listener on a separate IP address or port
for non-screened mail injection, etc.
Because FILTER (dest) can be the result of a Postfix access lookup,
you can also use a Postfix access file lookup to direct mail either to
the content filter or to a bypass, based on any valid access lookup
criteria (recipient, sender, host, etc.) In the system I built, I used
this to allow certain "exempt" recipients to be specified, whose mail
would bypass the filtering, by sending it to the post-amavisd
reinjection Postfix listener.
> I already have two postfix instances set up, with the second for
> things like adding the message footer, etc. Can this somehow be used?
It could, but you don't need this.
Hope this helps; I can go into detail if you need it, but it sounds
like you've got a good grasp on Postfix config and can infer the
details from my overview.
-- Clifton
--
Clifton Royston -- clift...@iandicomputing.com / clift...@lava.net
President - I and I Computing * http://www.iandicomputing.com/
Custom programming, network design, systems and network consulting services
------------------------------------------------------------------------------
This SF.Net email is sponsored by the Verizon Developer Community
Take advantage of Verizon's best-in-class app development support
A streamlined, 14 day to market process makes app distribution fast and easy
Join now and get one step closer to millions of Verizon customers
http://p.sf.net/sfu/verizon-dev2dev
_______________________________________________
AMaViS-user mailing list
AMaViS-user@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/amavis-user
AMaViS-FAQ:http://www.amavis.org/amavis-faq.php3
AMaViS-HowTos:http://www.amavis.org/howto/
