Andy Spiegl wrote:
Hi Eric,
I'm missing comprehension pieces also; however, I understand that if a message is sourced from a dynamic IP, it is expected to route it's mail thru "the correct" smtp server.
Ah, that explains a lot. Although I don't agree with the method how the "correct" one is computed. Anyone second?
As I will write to Matt in a second my concern isn't what _my_ spamassassin says about _my_ users' mails, but what other peoples spamassassin says about my users' mails. I can't change the configuration of their SA.
And also what my spamassassin is saying about mails to my users from other people who have dialup IPs and "incorrect" smtp servers. I can't add all their server to my trusted_networks.
SA is a really great tool, there is just that tiny detail where I disagree. Maybe we can start a serious discussion (or vote) here?
Have a great (carnival :-) weekend, Andy.
This might make things more clear: Your email to the list only hit the following on my SA:
score=-2.8 required=8 tests=BAYES_00,RCVD_IN_NJABL,RCVD_IN_SORBS
Which is correct, since the original IP is in NJABL and SORBS.
Note that *my* Spamassassin doesn't hit DYNABLOCK or NJABL_DIALUP on your email. This is because you are doing exactly what you should be doing (sending out through a smarthost).
I haven't added your IPs to my SA config... I don't have to! But, my external MX server *is* in my trusted_networks. So, SA knows "just look at who is connecting to the edge of my network".
In the sample message you posted, you appear to have sent to a "non-local" email address, but the message was processed by SA on condor. Strange, unless web.de is also local, and condor is processing email for that server?
What do you have set in local_networks (at the time of receiving the mail you posted)?
Is lyta.akte.de your smarthost? (appears to be)
What IP ranges are allowed to send through your smarthost?
--Rich
