The whitelist_from_rcvd rule is a bit "fussy" and can be difficult to make work.
It depends on the message's 'Envelope From' info making it into SA, not the
'From:' header, for your trusted relays to be configured correctly, and for
their external SMTP server having DNS entries configured correctly.
It also requires you to stay on top of what ever changes the sender may make in
their outgoing MTA system.
If the desired messages have correct DKIM/SPF signatures/data then
whitelist_auth is much easier to use.
On Wed, 18 Feb 2026, Philip Prindeville via users wrote:
Hi.
I have rules like:
whitelist_from_rcvd [email protected] mirrors.kernel.org
...
blacklist_from *@yandex.ru
And only the last rule seems to be hit. How do I debug this?
I'm trying to avoid spam from Yandex while getting mailing list mail from legit
contributors to Linux that use Yandex (god knows why).
Thanks,
-Philip
--
Dave Funk University of Iowa
<dbfunk (at) engineering.uiowa.edu> College of Engineering
319/335-5751 FAX: 319/384-0549 1256 Seamans Center, 103 S Capitol St.
Sys_admin/Postmaster/cell_admin Iowa City, IA 52242-1527
#include <std_disclaimer.h>
Better is not better, 'standard' is better. B{
