On 9/20/06, John D. Hardin <[EMAIL PROTECTED]> wrote:
On Wed, 20 Sep 2006, Salatiel Filho wrote:
> On 9/20/06, Daryl C. W. O'Shea <[EMAIL PROTECTED]> wrote:
> >
> > On 9/20/2006 8:00 PM, Salatiel Filho wrote:
> > > I'm having troubles with spamassassin ,
> > >
> > > Here it is the spam header:
> >
> > > Return-Path: <[EMAIL PROTECTED] >
> > >
> > > What am i doing wrong ?
> >
> > Um, whitelisting yourself with a whitelist method open to forgery? :)
>
>
> My mistake , my auto_whitelist is * mydomain.edu.br
The comment still applies. It's trivially easy to forge mail such that
it appears to come from [EMAIL PROTECTED]
Take that out of the whitelist and SA will stop whitelisting
forgeries.
--
John Hardin KA7OHZ ICQ#15735746 http://www.impsec.org/~jhardin/
[EMAIL PROTECTED] FALaholic #11174 pgpk -a [EMAIL PROTECTED]
key: 0xB8732E79 - 2D8C 34F4 6411 F507 136C AF76 D822 E6E6 B873 2E79
-----------------------------------------------------------------------
If someone has a gun and is trying to kill you, it would be
reasonable to shoot back with your own gun.
-- the Dalai Lama, May 15, 2001
-----------------------------------------------------------------------
Well , i think i found where the problem is. Aparently return-path is [EMAIL PROTECTED]
and SA checks return-path against WHITE_LIST :/
Is there a way to make SA check whitelist just against "from" ?
--
[]'s
Salatiel
"O maior prazer do inteligente é bancar o idiota
diante de um idiota que banca o inteligente".
