On Mon, 17 Jun 2019, @lbutlr wrote:
On 17 Jun 2019, at 11:06, Reindl Harald <h.rei...@thelounge.net> wrote:
Am 17.06.19 um 16:30 schrieb @lbutlr:
Received: from darth.lan (c-73-14.161.160.hsd1.co.comcast.net [73.14.161.160])
by mail.covisp.net(Postfix 3.4.5/8.13.0) with SMTP id unknown;
Sun, 16 Jun 2019 15:26:32 -0600
(envelope-from <kr...@kreme.com>)
The first has an ESMTPS id and the other has SMTP id unknown.
a) ESMTPS is *not* authentication
I didn’t say it was, but the change in the header seems to be triggering
spamass-milter in ways that it was not being triggered before.
On 17 Jun 2019, at 02:07, Matus UHLAR - fantomas <uh...@fantomas.sk> wrote:
if the mail was authenticated, it should contain ESMTPA or ESMTPSA instead
of SMTP.
Note that spamass-milter fakes the first Received: header (because milter
must get message as it is received from mail client), but lack of "A" in the
SMTP indicates that your mail is not really authenticated.
The message WAS sent via an authenticated connection:
Jun 16 15:26:32 mail postfix/submit/smtpd[52711]: 45RnTh0J8KzdrvJ:
client=c-73-14-161-160.hsd1.co.comcast.net[73.14.161.160], sasl_method=PLAIN,
sasl_username=kr...@kreme.com
Jun 16 15:26:32 mail postfix/cleanup[52845]: 45RnTh0J8KzdrvJ:
message-id=<0c3be5f6-c5b4-4b07-853d-fad6dcbb6...@kreme.com>
Jun 16 15:26:33 mail postfix/qmgr[27634]: 45RnTh0J8KzdrvJ:
from=<kr...@kreme.com>, size=3259, nrcpt=2 (queue active)
Jun 16 15:26:33 mail postfix/lmtp[53026]: 45RnTh0J8KzdrvJ: to=<mumble>,
orig_to=<mumble>, relay=mail.covisp.net[private/dovecot-lmtp], delay=1.9,
delays=1.7/0.01/0.19/0.01, dsn=2.0.0, status=sent (250 2.0.0 <mumble>
1QOYNQm0Bl1fzwAAIdGjjQ:2 Saved)
Jun 16 15:26:33 mail postfix/qmgr[27634]: 45RnTh0J8KzdrvJ: removed
Are you feeding spamass-milter the necessary information (via milter-macros in
your MTA config) so that -it- knows that particular session is authenticated? It
needs that info if it's going to synthesize the correct header so that
SpamAssassin knows that session was authenticated.
Specifically:
In your config for Milter.macros.envfrom you need to include "{auth_type},
{auth_authen}, {auth_ssf}, {auth_author}" (note that is sendmail syntax,
translate into postfix as appropriate).
If you don't pass those {auth_*} macros into spamass-milter it has no way to
know a particular session is authenticated.
--
Dave Funk University of Iowa
<dbfunk (at) engineering.uiowa.edu> College of Engineering
319/335-5751 FAX: 319/384-0549 1256 Seamans Center
Sys_admin/Postmaster/cell_admin Iowa City, IA 52242-1527
#include <std_disclaimer.h>
Better is not better, 'standard' is better. B{
