At 04:56 PM 1/21/2004, you wrote:
Hi
SA offers the possibility of having a "smarter" whitelist which whitelists only if the sending relay is "related" to the sending email, like
whitelist_from_rcvd [EMAIL PROTECTED] example.com
is there a possibility to somehow do the opposite, ie
"blacklist [EMAIL PROTECTED] only if the relay is NOT related to the "example.com" domain
There's no keyword for it, but you could do this with a couple of custom rules.
For example:
header __FROM_HOTMAIL From =~ /hotmail.com/i header __RCVD_HOTMAIL Received =~/hotmail.com/i meta LOCAL_FROM_NOT_RCVD_HOTMAIL (__FROM_HOTMAIL && ! __RCVD_HOTMAIL) score LOCAL_FROM_NOT_RCVD_HOTMAIL 1.0
as much of these big freemail adresses (yahoo, netscape, mail, etc) are spoofed anyway. For example, i see a lot of @yahoo.com emails coming from everywhere, except from yahoo.com's servers
I think a lot of these types as well you will find come in with no message-id header forcing your MTA to add a message id... I wonder if you could instead do this:
header __FROM_HOTMAIL From =~ /hotmail\.com/i header __MY_MTAID Message-Id =~ /[EMAIL PROTECTED]/i meta MY_MTA_ADDED_RCVD_HOTMAIL (__FROM_HOTMAIL && __MY_MYAID) score MY_MTA_ADDED_RCVD_HOTMAIL 1.0
------------------------------------------------------- The SF.Net email is sponsored by EclipseCon 2004 Premiere Conference on Open Tools Development and Integration See the breadth of Eclipse activity. February 3-5 in Anaheim, CA. http://www.eclipsecon.org/osdn _______________________________________________ Spamassassin-talk mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/spamassassin-talk
