Every now and then people ask for ways to skip some or all checks defined in header_checks done by the cleanup daemon, then they learn[1] that due to postifx design they must figure out workarounds or use external filters.
For example, some want to prevent legitimate users' outgoing mail from being checked against header_checks or to be checked against a relaxed set of checks[2]; in this case a solution is either to configure the submission smtpd daemon with "-o receive_override_options=no_header_body_checks" in master.cf or setup an additional postfix instance dedicated to handle email submitted by users (which in turn means having a different set of header_checks). Others would want to whitelist a customers' IP address by setting up a second postfix instance with a different set of header_checks rules and transparently redirect the customer traffic to it with the help of a firewall. What do you folks use to workaround such limitations while (ab)using cleanup's header_checks as a spam filter to whitelist the business needs? Please add your replies with your need(s) and how did you come up with the solution. It would be useful to add also recommendations from Wietse even if they did not were followed up with a response from the asking user on the lists. [1]. http://postfix.1071664.n5.nabble.com/more-actions-for-header-checks-body-checks-td49663.html [2]. https://groups.yahoo.com/neo/groups/postfix-users/conversations/topics/199768
