On 2022-01-06 18:20, Grant Taylor wrote:
Q: Does the upstream MSA not do filtering of inbound messages from clients? I would think that this filtering would cover messages originating from the upstream organization to the downstream organization.
that header should be on same host as the email clients read there mails, if its trusted outside of local mta, then its forged say X-Spam-Flag: NO
do we want to trust it ?spamassassin removes upstream results, to make X-Spam-Flag trusted to be local