ExiScan has been part of exim for quite a while now. We reject spam at SMTP with exim and SA when it scores above 15. We have not, as of yet, had a FP near that high. The spams are logged in such a way it makes it easy to create a report including the SA report, the from, to, subject, etc and review the hits from the previous day just in case there is a FP but it hasn't happened yet.
Could you share your modifications to exim.conf you did to accomplish this? I am running Directadmin webgui which uses exim for a MTA. Matt
