https://issues.apache.org/SpamAssassin/show_bug.cgi?id=5185
Kevin A. McGrail <[email protected]> changed: What |Removed |Added ---------------------------------------------------------------------------- Target Milestone|3.4.1 |3.4.0 Severity|normal |blocker --- Comment #11 from Kevin A. McGrail <[email protected]> 2012-01-17 17:54:33 UTC --- DFS made a good point and I think we need to change the checksum calculation. 3.4.0 is the right time to do this because it will invalidate current checksums so we can give people good notice of the issue. Moving this to a blocker. Right now, we use the last received. Let's drop that entirely as he suggests: Based on the comments: # Use sha1_hex(Date:, last received: and top N bytes of body) # where N is MIN(1024 bytes, 1/2 of body length) and the code says: unshift(@msgid, sha1_hex($date."\000".$rcvd."\000".$body).'@sa_generated'); so instead use: unshift(@msgid, sha1_hex($date . "\000" . $body) . '@sa_generated'); Richard, any chance you could test with this change ASAP on your production machine if we got you a patch? Regards, KAM -- Configure bugmail: https://issues.apache.org/SpamAssassin/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are the assignee for the bug.
