can SA read berkley db hash:'s like postfix does? something like
trusted_networks = ... 123.123.121. ... hash:/var/lib/pop-before-smtp/hosts
if so that would be very cool cuz just as that hash allows people to
temporarily use postfix as a relay (it removes the entries from the has
after 30minutes of activity) it could also temporary add them as
trusted_network ips. that would be really cool.
----- Original Message -----
From: "Daryl C. W. O'Shea" <[EMAIL PROTECTED]>
To: "Matthew Lenz" <[EMAIL PROTECTED]>
Cc: <users@spamassassin.apache.org>
Sent: Friday, September 23, 2005 5:27 PM
Subject: Re: arrrgh.. debian sarge spamassassin worthless?
Matthew Lenz wrote:
1. do you control the IPs that your dial-up users are connecting from
no.. they all connect from various isp's.
3. can you obtain enough pain medication to get them all to convert to
auth'd SMTP connections?
heh I thought about implementing it .. maybe i still can at some point.
Well, you're in the no-fun group then. If you could do smtp auth SA would
automatically extend the trust boundary for you -- problem solved.
Your easiest option is to abandon SPF and tell your users to use their own
ISP's smarthost.
Another option is to find a way (that will vary depending on how you call
SpamAssassin) to bypass SA checks for the POP before SMTP users.
Finally, you could modify the AccessDB plugin in 3.1 to extend trust
rather than penalize mail from hosts found with "bad" flags in the DB. If
I get sufficiently bored and find enough food I may look into this
sometime.
Daryl
