> That said, I agree with Andrew.. By disabling the rule you're just ignoring
> a part of a larger problem. Your trust path is broken, and needs fixing
> ASAP. This affects things other than just the ALL_TRUSTED rule.
I'm not sure what you mean that my trust path is broken, nor do I know how to fix it.
Your trust path is SA's ability to determine which servers in a series of Received: headers are trustworthy.
SA uses some reasonable mechanisms to guess on it's own, but complex setups with NATed mailservers, multiple in-network relays, etc can confuse it.
Sometimes it also becomes broken because SA can't understand your MTA's Receieved: header formats.
If it's just a failure of the guessing mechanism, you can use trusted_networks to fix it. See the man Mail::SpamAssassin::Conf file.
If it's a mis-parse, you can check by running a message through spamassassin -D. If SA's interpretations of the Received headers is strange, open a bugzilla bug, and attach a sample message. This way the SA devels can look at fixing it for a future version.
