OK so today I got my 1st spam email from someone at a yahoo.com email address. Basically SA didn't score it at all and 'Postgray' did it's job. Below are the headers from SA:
X-spam-checker-version: SpamAssassin 3.3.0 (2010-01-18) on mail.iamghost.com X-spam-level: X-spam-status: No, score=0.0 required=6.3 tests=FREEMAIL_FROM, RCVD_IN_DNSWL_NONE,TVD_SPACE_RATIO,T_DKIM_INVALID autolearn=ham version=3.3.0 Received: from web51707.mail.re2.yahoo.com (web51707.mail.re2.yahoo.com [206.190.38.225]) by mail.iamghost.com (Postfix) with SMTP id 094744059 for <car...@iamghost.com>; Wed, 10 Mar 2010 11:04:04 -0500 (EST) Received: (qmail 55813 invoked by uid 60001); 10 Mar 2010 12:04:03 -0000 Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=yahoo.com; s=s1024; t=1268222643; bh=40eDTxXUsGn0fMF8GraXJhuKKlHlm9is5R5TfWxrsTY=; h=Message-ID:X-YMail-OSG:Received:X-Mailer:Date:From:Subject:To:MIME-Version:Content-Type; b=AB7PjrgviIl6G8eoxtXEYsRV0r/L744GYWgtL8pwpEOkKQPQPIarPNrd7csXfXc5Xl1AZyABQy8cx26ljNyrhAz90LdRHzFIZ+4cXTwqfiGz4ep/fGOyTjIeYW642wtUbtGCskCF5x0ffoTaBDD5Zk0WTARijt/0sGXnoFAb/6w= Domainkey-signature: a=rsa-sha1; q=dns; c=nofws; s=s1024; d=yahoo.com; h=Message-ID:X-YMail-OSG:Received:X-Mailer:Date:From:Subject:To:MIME-Version:Content-Type; b=Tyd/oHsBFk0RvLYTw+I5/poGilD24lzOF6hzQ0wPGB2dGz1yn/HruU+3Rb69gzKVSiW3RXuBNn4XdBB5t2mrPXq67Ji2p0+pUAirHbnCun3csbsVQBRnsrmylQdZon8im+yZPT9OEGZrd3mBoPaedYsDteMW82yXCnSnxx64cQk=; Message-id: <903238.54368...@web51707.mail.re2.yahoo.com> My question is what do you recommend I do to avoid this? I don't know how this person (spammer) got my email address but regardless its out there and I can't block all Yahoo servers because some of my friends do have legit Yahoo accounts and send me email. Is there something I should tweak / change on my server? I added my Postfix mail log for anyone who cares to see it but I am just asking for advice on what to do since this is a new email server and I don't want to start getting spam. I hope someone can please point me in the right direction... Mar 10 11:04:04 mail postfix/smtpd[4563]: connect from web51707.mail.re2.yahoo.com[206.190.38.225] Mar 10 11:04:05 mail postgrey[1146]: action=pass, reason=client whitelist, client_name=web51707.mail.re2.yahoo.com, client_address=206.190.38.225, sender=marathoner...@yahoo.com, recipient=car...@iamghost.com Mar 10 11:04:05 mail postgrey[1146]: cleaning up old logs... Mar 10 11:04:05 mail postfix/smtpd[4563]: 094744059: client=web51707.mail.re2.yahoo.com[206.190.38.225] Mar 10 11:04:05 mail postfix/cleanup[4567]: 094744059: message-id=<903238.54368...@web51707.mail.re2.yahoo.com> Mar 10 11:04:05 mail postfix/qmgr[1143]: 094744059: from=<marathoner...@yahoo.com>, size=2372, nrcpt=1 (queue active) Mar 10 11:04:05 mail postfix/smtpd[4563]: disconnect from web51707.mail.re2.yahoo.com[206.190.38.225] Mar 10 11:04:10 mail postfix/pickup[4556]: 8DA03405C: uid=5001 from=<marathoner...@yahoo.com> Mar 10 11:04:10 mail postfix/cleanup[4567]: 8DA03405C: message-id=<903238.54368...@web51707.mail.re2.yahoo.com> Mar 10 11:04:10 mail postfix/pipe[4568]: 094744059: to=<car...@iamghost.com>, relay=spamassassin, delay=5.9, delays=0.66/0.01/0/5.3, dsn=2.0.0, status=sent (delivered via spamassassin service) Mar 10 11:04:10 mail postfix/qmgr[1143]: 094744059: removed Mar 10 11:04:10 mail postfix/qmgr[1143]: 8DA03405C: from=<marathoner...@yahoo.com>, size=2722, nrcpt=1 (queue active) Mar 10 11:04:10 mail postfix/local[4572]: 8DA03405C: to=<car...@iamghost.com>, relay=local, delay=0.12, delays=0.07/0.01/0/0.04, dsn=2.0.0, status=sent (delivered to maildir) Mar 10 11:04:10 mail postfix/qmgr[1143]: 8DA03405C: removed