OK - it definately looks like the problem is coming from the milter, which
is writing a temporary 'Received' header for the backend scanners to use:
====================================
[in smtp-vilter/bin/engine.c]
...
/* Write an artifical Received: from: Header to the message */
if (gethostname(hostname, sizeof(hostname))) {
syslog(LOG_ERR, "can't get local hostname");
strlcpy(hostname, "localhost", sizeof(hostname));
}
if (conn->clientaddr == NULL)
fprintf(msg->fp, "Received: from %s by %s\r\n",
conn->hostname,
hostname);
else
fprintf(msg->fp, "Received: from %s (%s) by %s\r\n",
conn->heloname, conn->clientaddr, hostname);
return SMFIS_CONTINUE;
====================================
So that's where I need to focus.
Many thanks for your earlier help.
MARTIN
----- Original Message -----
From: "Martin Crossley" <mar...@crossleys.biz>
To: "Wietse Venema" <wie...@porcupine.org>
Cc: <postfix-users@postfix.org>
Sent: Wednesday, October 14, 2009 9:29 AM
Subject: Re: milter (smtp-vilter) not seeing 'Authenticated sender' in
postfix 'Received:' header
Hi Wietse
Thanks very much for the quick response and the helpful info.
----------
Wietse Venema:
> From <sen...@my.domain>
> Received: from CLIENT (client.my.domain [xx.xx.xx.xx]) by
> server.my.domain
> Message-ID: <xxxx...@client>
First of all, that "From <address>" line is an mbox header that
POSTFIX never sends to milter applications.
OK that makes perfect sense.
----------
Postfix always produces Received: headers that include "by servername
(Postfix) with protocolname", followed by "for <recipient>" if the
message has only one recipient.
The Postfix SMTP server, that is.
If that information is deleted, then you need to examine your
header_checks rules.
Thanks for the suggestion about header_checks, but aren't they implemented
in 'cleanup', i.e. after the before-queue SMTP milter has finished? Also
because the delivered message has the full and correct 'Received:' header,
I'm confident that postfix isn't deleting it.
So, it seems possible that the milter application (smtp-vilter) could be
mangling the headers before it sends them to spamd. I'll try to get a
dump of the dialogue between smtp-vilter and smtpd, in order to clarify
this; and also take look at the source for smtp-vilter.
----------
Mail submitted with /usr/sbin/sendmail gets a Received: header
that looks like:
Received: by servername (Postfix, from userid number)
id queueid; date
which also does not match your quote.
Yes that's correct, I'm submitting the mail into smtpd over the network.
Many kind regards
MARTIN
