On 17 May 2010 17:05, Noel Jones <njo...@megan.vbhcs.org> wrote: > On 5/17/2010 9:50 AM, Jon Tullett wrote: >> >> Hi all >> >> I'm hoping to configure postfix to only apply content filtering to >> mail that comes from unauthenticated sources, or outside sources if >> that's not possible. Basically, I want unauthenticated email checked >> for spam+viruses, but not authenticated email, because we've had the >> occasional problem with false positives (using spamassassin). I'm not >> especially worried about outbound viruses - we do use desktop AV, and >> a virus or worm which makes an unauthenticated SMTP connection on its >> own should then get filtered normally. >> >> I've found two options, please tell me if I'm barking up completely >> the wrong tree :) >> >> The first is described in a forum post here: >> >> http://mail-archives.apache.org/mod_mbox/spamassassin-users/200410.mbox/%3c00a201c4bef4$766b2ed0$0a00a...@splatter%3e#archives >> >> That page suggests a way to use amavis for non-SASL connections only: >> >> main.cf: >> content-filter = >> smtpd_sender_restrictions = permit_sasl_authenticated, >> check_sender_access regexp:/etc/postfix/amavisd.regexp >> >> amavisd.regexp: >> /^/ FILTER smtp-amavis:[127.0.0.1]:10024 >> >> I didn't see another reference to doing it this way, so my question >> is, is this a workable solution or a terribly bad idea? Will it >> achieve what I want, or surprise me by breaking postfix in some new >> and interesting way? > > This is a valid config and will send only unauthenticated mail to amavisd. > Authenticated mail gets a free pass. Similar setups are posted here > frequently and can be found in the amavisd-new docs.
Super. Thanks Noel - much appreciated! -J
