From: Gary W. Smith [mailto:[EMAIL PROTECTED] > > I have all email hitting the production 2.6x spamd and at the same > time logging it against the 3.x spamd. I diff the output from the > original email for both spamd’s. Anyways, I keep noticing that > ALL_TRUSTED is hit for each and every 3.x email. Obviously from > the header it started from an external source which isn’t trusted. > In local.cf I have clear_trusted_networks and do not add any > additional trusted networks listed. Why? Each email that is > passing through the system seems to be automatically starting off > with a -3.3. BTW, the 3.0 server we are testing against is on the > private network. Here is the test call. 10.27.0.10 is the address > for the server that is spooling the mail coming in from the net > (NAT’d). daemon spamd -D -i -A 10.27.0.10,127.0.0.1 -d -r > /var/run/spamd.pid -m 20
SA 3.0 attempts to "guess" at trusted networks if you don't specify any. In situations using NAT, this doesn't work very well. There have been a few threads on this recently. Add a "trusted_networks" entry or two to cover your mailservers and this problem will go away. Bowie
