On 06/09/2019 15:53, RW wrote:
On Fri, 6 Sep 2019 09:51:06 +0300 Reio Remma wrote:Hello! I recently did an experiment where I stopped accepting incoming e-mail without TLS. This seemingly cut off about 95-99% of spam. Unfortunately there still seem to be a small percentage of servers sending without TLS, so that was a no go. Now I've instead turned to SpamAssassin to score TLS. header MR_RCVD_TLSĀ Received =~ / by \S+ \(OpenSMTPD\) with ESMTPS id [a-z0-9]{8} \((TLSv\d+(?:[.]\d+)?):\S+:\d+:\S+\)/s Does the Received check only check the last untrusted relay?No that runs against all Received headers, you should make sure the "by" part only matches your MX server.
Thanks a bunch for the info! Reio
