Re: How to do whitelisting with milter_header_checks?
Wietse Venema: > Sebastian Wiesinger: > > Hello, > > > > the documentation states: > > > > The milter_header_checks mechanism could also be used for > > whitelisting. For example it could be used to skip heavy content > > inspection for DKIM-signed mail from known friendly domains. > > > > I want to do that for mail that passes DMARC checks (with 2.11.2 DMARC > > became easy to implement thanks to the milter change). > > > > But looking at header_checks(5) I can't see a good ACTION for doing > > it. PERMIT is not listed, OK is treated at DUNNO... > > Ihe action is to be implemented IN THE HEAVY CONTENT FILTER. Another option is to have: /etc/postfix/main.cf: content_filter = smtp:input-of-after-queue-content-filter /etc/postfix/milter_header_checks: /^flagged as authentic/ content_filter = smtp:after-filter-smtp-service Where after-filter-smtp-service is the SMTP service that follows the after-queue-content-filter. Thus, allowing authentic mail to skip the content filter. Wietse
Re: How to do whitelisting with milter_header_checks?
Sebastian Wiesinger: > Hello, > > the documentation states: > > The milter_header_checks mechanism could also be used for > whitelisting. For example it could be used to skip heavy content > inspection for DKIM-signed mail from known friendly domains. > > I want to do that for mail that passes DMARC checks (with 2.11.2 DMARC > became easy to implement thanks to the milter change). > > But looking at header_checks(5) I can't see a good ACTION for doing > it. PERMIT is not listed, OK is treated at DUNNO... Ihe action is to be implemented IN THE HEAVY CONTENT FILTER. Wietse
How to do whitelisting with milter_header_checks?
Hello, the documentation states: The milter_header_checks mechanism could also be used for whitelisting. For example it could be used to skip heavy content inspection for DKIM-signed mail from known friendly domains. I want to do that for mail that passes DMARC checks (with 2.11.2 DMARC became easy to implement thanks to the milter change). But looking at header_checks(5) I can't see a good ACTION for doing it. PERMIT is not listed, OK is treated at DUNNO... Can someone point me in the right direction? Regards Sebastian -- GPG Key: 0x93A0B9CE (F4F6 B1A3 866B 26E9 450A 9D82 58A2 D94A 93A0 B9CE) 'Are you Death?' ... IT'S THE SCYTHE, ISN'T IT? PEOPLE ALWAYS NOTICE THE SCYTHE. -- Terry Pratchett, The Fifth Elephant
