J Doe skrev den 2023-07-26 01:20:
I am currently using SpamAssassin 4.0.0 and I had a question on how I
can ensure that any e-mail from @gmail.com has a valid SPF and DKIM
signature.
incorrect questions gives incorrect answers
I am aware that the following can be easily fooled, because it is not
checking SPF and DKIM:
welcomelist_from *@gmail.com
will accept forged senders
... so to ensure valid SPF and DKIM, I believe I would need:
welcomelist_from_spf *@gmail.com
welcomelist_from_dkim *@gmail.com
... or *two* entries.
Is that correct ?
yes
read perldoc Mail::SpamAssassin::Conf in the section auth
welcomelist_from u...@example.com
Previously whitelist_from which will work interchangeably until
4.1.
Used to welcomelist sender addresses which send mail that is
often
tagged (incorrectly) as spam.
Use of this setting is not recommended, since it blindly trusts
the
message, which is routinely and easily forged by spammers and
phish
senders. The recommended solution is to instead use
"welcomelist_auth" or other authenticated welcomelisting
methods, or
"welcomelist_from_rcvd".
its a one liner with welcomelist_auth
