Re: rule checking environment variable
On 26.02.08 19:20, Miguel Angel wrote: They are getting high score because are using dynamic ip ranges and they match rbl lists. If you relay mail from your dynamic addresses w/o authentication, they should be in your trusted_networks. Then they'll get ALL_TRUSTED and probably DOS_*_TO_MX, unless it's clear that they used SMTP authentication. Since you mentioned that they are authenticated, those mails probably miss the auth info, or possibly the SA doesn't use it. So, it's again about valid auth info in Received: headers. On 26.02.08 14:51, Miguel Angel wrote: i am using spamassassin 3.2.3 with qmail and simscan, the problem i have it is that my authenticated smtp users have any mails rejected because a high score, Matus UHLAR - fantomas escribió: do they get high score because of the authentication or are they catching something like DOX_*_TO_MX? Proper authentication data in Received: headers should make SA know that the client was trusted and not to catch that rule... -- Matus UHLAR - fantomas, [EMAIL PROTECTED] ; http://www.fantomas.sk/ Warning: I wish NOT to receive e-mail advertising to this address. Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu. Atheism is a non-prophet organization.
Re: rule checking environment variable
On 26.02.08 19:20, Miguel Angel wrote: They are getting high score because are using dynamic ip ranges and they match rbl lists. If you relay mail from your dynamic addresses w/o authentication, they should be in your trusted_networks. Then they'll get ALL_TRUSTED and probably DOS_*_TO_MX, unless it's clear that they used SMTP authentication. Since you mentioned that they are authenticated, those mails probably miss the auth info, or possibly the SA doesn't use it. So, it's again about valid auth info in Received: headers. On 26.02.08 14:51, Miguel Angel wrote: i am using spamassassin 3.2.3 with qmail and simscan, the problem i have it is that my authenticated smtp users have any mails rejected because a high score, Matus UHLAR - fantomas escribió: do they get high score because of the authentication or are they catching something like DOX_*_TO_MX? Proper authentication data in Received: headers should make SA know that the client was trusted and not to catch that rule... i have get the solution with simscan, it has an configure option to not scan authenticated smtp sends checking an environment variable. Thanks. Regards, Miguel Angel.
Re: rule checking environment variable
Rick Macdougall escribió: Miguel Angel wrote: Hello, i am using spamassassin 3.2.3 with qmail and simscan, the problem i have it is that my authenticated smtp users have any mails rejected because a high score, i know i can use other ip not listed in mx of the domains to create a server with required authentication where i should not scan for spam (and make my users send with that) but i would like to search other solution, i would like to create a spamassassin rule with a -100 score that search for an environment variable but i have not found anything about that in the page|wiki|mailing-list, it is that possible to do? when qmail authenticate the users adds the variable SMTP_AUTH_USER so when spamc it is launched from simscan this variable should be there yet. I am using now whitelist_from [EMAIL PROTECTED] but it is not a good idea because many spammers change the From address domain to be the same of the rcpto. Hi, The latest versions of simscan will not run spamc on email where RELAYCLIENT is set. This can happen via smtp auth or via tcp.smtp. You might want to take this over to the simscan mailing list and post your ./configure options so we can help you figure out why it is scanning smtp auth users. Regards, Rick Hi, i have read about this in README file (i am using last simscan version) but the way to configure this it is changing the tcp.smtp, i am using this smtp to receive mail, it is the mx of many domains, if i desactivate simscan on it, i will lost spamassassin and clamav scanning on received mails too. In mailing list of John Simpson combined patch to qmail any users says me i should create other smtp server in other ip/port and force smtp auth on there, disable spamassassin on it and give it to my users to send mail from it but i would like to know if i could avoid that solution. Regards, Miguel Angel.
Re: rule checking environment variable
Miguel Angel wrote: Hello, i am using spamassassin 3.2.3 with qmail and simscan, the problem i have it is that my authenticated smtp users have any mails rejected because a high score, i know i can use other ip not listed in mx of the domains to create a server with required authentication where i should not scan for spam (and make my users send with that) but i would like to search other solution, i would like to create a spamassassin rule with a -100 score that search for an environment variable but i have not found anything about that in the page|wiki|mailing-list, it is that possible to do? when qmail authenticate the users adds the variable SMTP_AUTH_USER so when spamc it is launched from simscan this variable should be there yet. I am using now whitelist_from [EMAIL PROTECTED] but it is not a good idea because many spammers change the From address domain to be the same of the rcpto. Hi, The latest versions of simscan will not run spamc on email where RELAYCLIENT is set. This can happen via smtp auth or via tcp.smtp. You might want to take this over to the simscan mailing list and post your ./configure options so we can help you figure out why it is scanning smtp auth users. Regards, Rick
Re: rule checking environment variable
Miguel Angel wrote: The latest versions of simscan will not run spamc on email where RELAYCLIENT is set. This can happen via smtp auth or via tcp.smtp. You might want to take this over to the simscan mailing list and post your ./configure options so we can help you figure out why it is scanning smtp auth users. Regards, Rick Hi, i have read about this in README file (i am using last simscan version) but the way to configure this it is changing the tcp.smtp, i am using this smtp to receive mail, it is the mx of many domains, if i desactivate simscan on it, i will lost spamassassin and clamav scanning on received mails too. In mailing list of John Simpson combined patch to qmail any users says me i should create other smtp server in other ip/port and force smtp auth on there, disable spamassassin on it and give it to my users to send mail from it but i would like to know if i could avoid that solution. The configuration of simscan is all that is needed. There are no changes to tcp.smtp. All that will happen with a correctly configured simscan is that email from authenticated users will not be run through spamd, it will still be run through clamav if configured. All other email will be scanned as usual. Regards, Rick
Re: rule checking environment variable
On 26.02.08 14:51, Miguel Angel wrote: i am using spamassassin 3.2.3 with qmail and simscan, the problem i have it is that my authenticated smtp users have any mails rejected because a high score, do they get high score because of the authentication or are they catching something like DOX_*_TO_MX? Proper authentication data in Received: headers should make SA know that the client was trusted and not to catch that rule... -- Matus UHLAR - fantomas, [EMAIL PROTECTED] ; http://www.fantomas.sk/ Warning: I wish NOT to receive e-mail advertising to this address. Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu. Remember half the people you know are below average.
Re: rule checking environment variable
They are getting high score because are using dynamic ip ranges and they match rbl lists. Matus UHLAR - fantomas escribió: On 26.02.08 14:51, Miguel Angel wrote: i am using spamassassin 3.2.3 with qmail and simscan, the problem i have it is that my authenticated smtp users have any mails rejected because a high score, do they get high score because of the authentication or are they catching something like DOX_*_TO_MX? Proper authentication data in Received: headers should make SA know that the client was trusted and not to catch that rule...
