Re: Best practice for adding headers?

Robert Senger Sun, 09 Jul 2023 16:01:39 -0700

Am Sonntag, dem 09.07.2023 um 13:55 -0700 schrieb Loren Wilton:
> > I've patched spamass milter to let any previously added "X-Spam"
> > headers untouched
> 
> Its generally considered bad practice to pass thru X-Spam headers
> from an 
> unkonwn source.
> Like most anything else in an email header, a spammer could inject
> his own 
> headers, probably populated with items designed to generate a
> negative 
> score.
>


Sure, but updating headers in place and adding own headers somewhere
else like spamass-milter is doing it is also bad practice in my eyes...

I've seen that other milters (clamav-milter in particular) offer an
option to either keep or remove existing virus scanning headers. 

Since I need to patch spamass-milter anyway to resolve a different
issue (calling "sendmail -bv <recipient>" does not work on postfix
systems), it should be easy to add such an option to spamass-milter.

Regards,

Robert

-- 
Robert Senger

Re: Best practice for adding headers?

Reply via email to