On Mon, 19 Apr 2021, Bill Cole wrote:
On 19 Apr 2021, at 11:05, Matus UHLAR - fantomas wrote:
On 19 Apr 2021, at 8:42, Simon Wilson wrote:
Yes, my trusted_networks, internal_networks and msa_networks are all
set correctly... I had a long discussion with this mailing list on the
subject last year and got excellent help on resolving that! :)
On 19.04.21 09:17, Bill Cole wrote:
Then the most direct tactic would be to modify KAM_DMARC_REJECT to not
hit if ALL_TRUSTED is hit.
On 19 Apr 2021, at 9:26, Matus UHLAR - fantomas wrote:
that would cause problems if you set up trusted_servers to any foreign
server
you trust not to fake headers.
On 19.04.21 09:46, Bill Cole wrote:
A valid point.
That raises the question of why we don't have an ALL_INTERNAL rule.
&& __LAST_EXTERNAL_RELAY_NO_AUTH
should do that.
I don't think that works if X-Spam-Relays-External is empty, i.e. all relays
are internal.
...so:
header ALL_INTERNAL X-Spam-Relays-External =~ /^$/
?
--
John Hardin KA7OHZ http://www.impsec.org/~jhardin/
jhar...@impsec.org pgpk -a jhar...@impsec.org
key: 0xB8732E79 -- 2D8C 34F4 6411 F507 136C AF76 D822 E6E6 B873 2E79
-----------------------------------------------------------------------
Our politicians should bear in mind the fact that
the American Revolution was touched off by the then-current
government attempting to confiscate firearms from the people.
-----------------------------------------------------------------------
Today: the 246th anniversary of The Shot Heard 'Round The World
