Please keep list mail on the list.
Direct replies unless stated as OFFLIST are not welcome.
On 08/09/2016 10:51 AM, Nicola Piazzi wrote:
Hi,
I dont want to specify some names
I need a rule that tell me if an email was sent using the same ip of the domain
mx record
So I am sure that the email come from a server owned by the proprietary of the
domain like spf check do
Nicola Piazzi
CED - Sistemi
COMET s.p.a.
Via Michelino, 105 - 40127 Bologna – Italia
Tel. +39 051.6079.293
Cell. +39 328.21.73.470
Web: www.gruppocomet.it
-----Messaggio originale-----
Da: Axb [mailto:axb.li...@gmail.com]
Inviato: martedì 9 agosto 2016 10:48
A: users@spamassassin.apache.org
Oggetto: Re: R: A plugin to legitimate email when SPF and DKIM missing
FTR: you can also do
whitelist_from_rcvd *@* gruppocomet.it
or
whitelist_from_rcvd *@*.it gruppocomet.it
or variations of...
On 08/09/2016 10:45 AM, Nicola Piazzi wrote:
whitelist_from_rcvd is intended to legitimate a single somain,
specifiing domain by domain
I need something that tell me that check all incoming email and say if
the originating ip (or class c) is the same of mx record
This can be intended like an SPF_PASS when people doesn t set spf at all.
Nicola Piazzi
CED - Sistemi
COMET s.p.a.
Via Michelino, 105 - 40127 Bologna - Italia Tel. +39 051.6079.293
Cell. +39 328.21.73.470
Web: www.gruppocomet.it
-----Messaggio originale-----
Da: Kevin Golding [mailto:k...@caomhin.org]
Inviato: martedì 9 agosto 2016 10:28
A: users@spamassassin.apache.org
Oggetto: Re: A plugin to legitimate email when SPF and DKIM missing
On Tue, 09 Aug 2016 09:10:06 +0100, Nicola Piazzi
<nicola.pia...@gruppocomet.it> wrote:
Hi
A lot of time we receive mail that are SPF NONE and have no DKIM Il
will be useful a little plugin that be able to give another chance to
legitimate these emails A lot of servers use the same machine to send
and receive emails, Plugin must read sender domain and search if the
IP used to send to us is one of the MX record list for domain This is
not intended to exclude other cases, but intended to have a chance to
recognize that is not a spoofed email only We can think to use not
the ip but the C class to get much more hits For example someone sent
from
199.56.23.5 and have mx record 199.56.23.9 can be legitimate because
both come from 199.56.23
Have someone something like this ?
Not quite, but assuming you're looking at using it for whitelisting purposes
you can use:
whitelist_from_rcvd *@gruppocommet.it gruppocommet.it
That says that any mail sent with a @gruppocommet.it address that is received
from a host with an rDNS matching gruppocommet.it will be whitelisted.
It's rather effective and efficient.
https://spamassassin.apache.org/full/3.4.x/doc/Mail_SpamAssassin_Conf.
html#whitelist_and_blacklist_options
may tell you more.
