> >I have received the following request: > >"We request to be on your whitelist. We are double opt-in only. > >We operate using several different upstream providers, and the >complete list of our ip address blocks can be found at >" > >Apparently they provide mailing-list services and our spamfilter has >refused some of their mailing-list-related mail. > >As far as I understand spamassassin's whitelisting it does not work >with "ip address blocks" but with the sender addresses or domains. > >If I would do what this person requested I can do it in exiscan by >just not referring email coming from that IP range to spamassassin. >That opens up a gateway for people who spoof thos IP addresses to >bypass the spamfilter. > > >Now my questions: > >How would administrators on this list would handle a request like >this?
Very carefully. Are you an ISP or a company? Do they have legit reasons for their email to be passed to your users? You can do what you want with your network, including block them for no reason at all. How are you blocking based on SA? IMHO whitelisting IP ranges that you aren't POSITIVE the use on, is a very bad idea. > >Should I ask particulars on a mailing list basis to do the >whitelisting? Absolutely! But without knowing how you are blocking, I can't say anymore. --Chris
