Hello All,
I'm running several virtual domains on
Cyrus+Postfix+SquirrelMail+Amavisd-new+Spamassassin+ClamAV system.
There are several users sending their legitimate mails via SquirrelMail on the
same mail server but getting scored as spam.
Here are 2 examples of X-Spam-Status for such mails.
X-Spam-Status: Yes, hits=6.2 tag1=-999.0 tag2=5.0 kill=5.0 tests=BAYES_00,
NO_REAL_NAME, PRIORITY_NO_NAME, RCVD_IN_DSBL, RCVD_IN_NJABL_DUL,
RCVD_IN_NJABL_PROXY, RCVD_IN_SORBS_DUL, RCVD_IN_XBL
X-Spam-Level: ******
X-Spam-Status: Yes, hits=6.2 tag1=-999.0 tag2=5.0 kill=5.0 tests=BAYES_00,
NO_REAL_NAME, PRIORITY_NO_NAME, RCVD_IN_DSBL, RCVD_IN_NJABL_DUL,
RCVD_IN_NJABL_PROXY, RCVD_IN_SORBS_DUL, RCVD_IN_XBL
X-Spam-Level: ******
Below full headers for an example mail:
----------------------------------------
Return-Path: <[EMAIL PROTECTED]>
Received: from mail.mydomain.ac.il ([unix socket])
by mail.mydomain.ac.il (Cyrus v2.2.3) with LMTP; Tue, 14 Nov 2006
13:11:57 +0200
X-Sieve: CMU Sieve 2.2
Received: from localhost (localhost [127.0.0.1])
by mail.mydomain.ac.il (Postfix) with ESMTP id 3212A1B370
for <[EMAIL PROTECTED]>; Tue, 14 Nov 2006 13:11:57 +0200 (IST)
X-Envelope-To: <[EMAIL PROTECTED]>
X-Envelope-From: <[EMAIL PROTECTED]>
X-Quarantine-id:
<spam-cf0b98c2a09b009790747cb05ba473a0-20061114-131157-00416-10>
Received: from mail.mydomain.ac.il (localhost [127.0.0.1])
by mail.mydomain.ac.il (Postfix) with ESMTP id D0AB71C5CD
for <[EMAIL PROTECTED]>; Tue, 14 Nov 2006 13:11:52 +0200 (IST)
Received: from 217.132.226.2
(SquirrelMail authenticated user ronits)
by mail.mydomain.ac.il with HTTP;
Tue, 14 Nov 2006 13:11:52 +0200 (IST)
Message-ID: <[EMAIL PROTECTED]>
Date: Tue, 14 Nov 2006 13:11:52 +0200 (IST)
Subject: =?utf-8?B?15fXqNeT15nXldeqINeR16DXmSDXkdeo16c=?=
From: [EMAIL PROTECTED]
To: [EMAIL PROTECTED]
User-Agent: SquirrelMail/1.4.7
MIME-Version: 1.0
Content-Type: text/plain;charset=utf-8
Content-Transfer-Encoding: 8bit
X-Priority: 3 (Normal)
Importance: Normal
X-Spam-Status: Yes, hits=6.2 tag1=-999.0 tag2=5.0 kill=5.0 tests=BAYES_00,
NO_REAL_NAME, PRIORITY_NO_NAME, RCVD_IN_DSBL, RCVD_IN_NJABL_DUL,
RCVD_IN_NJABL_PROXY, RCVD_IN_SORBS_DUL, RCVD_IN_XBL
X-Spam-Level: ******
1) Could you please tell me what rules should I adjust (and what score give to
those rules in local.cf) so these kinds of mails score below 5.
2) I've tried to add whitelist_from_rcvd to local.cf, but it didn't help:
whitelist_from_rcvd [EMAIL PROTECTED] virtualdomain1.ac.il
Should this line look like this?
whitelist_from_rcvd [EMAIL PROTECTED] mydomain.ac.il
Or this?
whitelist_from_rcvd [EMAIL PROTECTED] mail.mydomain.ac.il
Best Regards,
Leon Kolchinsky
