Thanks for the tip. Due to my "newbie-ness" with these products I'm a little uncertain were to start. Amavis seems to build many rules, and interface with SA where it actually has options in it.
Read the docs at the amavisd-new site here: -- http://www.ijs.si/software/amavisd/
Amavis runs SA, but does not allow SA to rewrite the message. Amavis does the rewriting, quarantining, and ultimate scoring.
SA still looks to its own config file (typically named local.cf) to run and score all of its tests, it just doesn't get to rewrite the original message.
More info here: -- http://www.ijs.si/software/amavisd/
Would I build this rule within amavis or SA?
All SA rules go in SA config (ok, this may be too absolute, I just can't think of any at the moment ;-).
There are many ways to train this anti-spam software stack (amavis/sa/razor/pyzor/bayes/etc.). Amavisd can soft-blacklist, blacklist, and soft-whitelist based on *envelope senders*, while SA's black and whitelists work on message headers. SA also has the trainable bayes engine. It all depends on what kind of features, performance, flexibility, accuracy, etc. etc. etc. that you need.
- Sam Nilsson
