Am 15.06.2014 22:48, schrieb Ralf Hildebrandt: >> header_checks is not designed for such things >> it's just limited basic functionality >> >> consider to use a policy-daemon with more features > > Rather: a milter. A policy-daemon doesn't see the mails' contents.
agreed - until now no need for use one of them, but what is pretty clear is that postfix wasn't desigend to deal with mail-contents at all which is good - it's just an MTA and doing that job perfectly, anything above that needs external software and as Wietse stated: blindly logging of remote input is dangerous and even can lead to command execution by simply watch the logfiles - don't do that if someone don't realize what Wietse was talking about: https://techzone.ergon.ch/CVE-2013-1862