On Wed, 21 Dec 2022, Joey J wrote:

But in better seeing the welcomelist_from_spf option, I think this will be
my first try.

If you are *really* worried about getting faked mail from that correspondent, you can do something like:

    whitelist_from_spf      j...@company.com
    blacklist_from          j...@company.com

I have a bunch of these sort of entries in my local config:

    whitelist_auth          *@wellsfargo.com
    blacklist_from          *@wellsfargo.com
    whitelist_auth          *@*.wellsfargo.com
    blacklist_from          *@*.wellsfargo.com
    whitelist_auth          *@netflix.com
    blacklist_from          *@netflix.com
    whitelist_auth          *@*.netflix.com
    blacklist_from          *@*.netflix.com

You may need to dial back the blacklist score a bit for it to work reliably:

    score  USER_IN_BLACKLIST   85.000  # let whitelist override blacklist


--
 John Hardin KA7OHZ                    http://www.impsec.org/~jhardin/
 jhar...@impsec.org                         pgpk -a jhar...@impsec.org
 key: 0xB8732E79 -- 2D8C 34F4 6411 F507 136C  AF76 D822 E6E6 B873 2E79
-----------------------------------------------------------------------
  "Bother," said Pooh as he struggled with /etc/sendmail.cf, "it never
  does quite what I want. I wish Christopher Robin was here."
                                           -- Peter da Silva in a.s.r
-----------------------------------------------------------------------
 3 days until Christmas

Reply via email to