Thanks for all the replies on this - food for thought! Seems the general consensus is that while in theory I should reject for p=reject (since that's what the sender wants me to do), in practice things like mailing lists and other forwarding conditions make that unsafe (and to a lesser extent the same applies to SPF and DKIM). At least in terms of a binary decision. So I think I'll stick with what I have and perhaps experiment with some SA scoring tweaks.
I should perhaps mention that I'm more concerned about spam coming out of our network via forwarding than I am about annoying our local recipients (and we use SRS). BTW various RBLs were mentioned - was going to ask a question on that, but will do so in a different thread.
_______________________________________________ Postfix-users mailing list -- postfix-users@postfix.org To unsubscribe send an email to postfix-users-le...@postfix.org
