I usually doesnt use whitelisting so much I wrote a couple of scripts that can be put in cron They read my sql log, extract message id and create whitelist rules based on reply on your sender id Thay match 55% of incoming clean mail at now for me
Download and read more here https://forum.efa-project.org/viewtopic.php?f=14&t=1769 Nicola Piazzi CED - Sistemi COMET s.p.a. Via Michelino, 105 - 40127 Bologna - Italia Tel. +39 051.6079.293 Cell. +39 328.21.73.470 Web: www.gruppocomet.it -----Messaggio originale----- Da: li...@rhsoft.net [mailto:li...@rhsoft.net] Inviato: mercoledì 10 agosto 2016 12:14 A: users@spamassassin.apache.org Oggetto: Re: [SOLVED] R: A plugin to legitimate email when SPF and DKIM missing Am 10.08.2016 um 12:00 schrieb Nicola Piazzi: > > I wrote this simple plugin, mxpf > This plugin search B class of sender Ip Address and try to match B > class of any Ip of mx records of declared domain So when it match is > very difficolut that sender is a spoofed domain, you can use MXPF_PASS > to combine with other rules in addition to SPF_PASS > > 1) Unpack mxpf.cf and mxpf.pm under /etc/mail/spamassassin dir > 2) put your score in mxpf.cf > > Download here : > > https://forum.efa-project.org/viewtopic.php?f=14&t=1777 that looks really good on piece missing - something like "whitelist_mx" working the same way as "whilelist_auth" to combine it with shortcicuit to complement whitelist by spf with that for senders you trust but don't have SPF/DKIM for whitelist_auth whitelist_mx sen...@domain.tld whitelist_mx *@domain.tld