[EMAIL PROTECTED] wrote: > mails from gmx probably do not indicate in a standard way that mail was > received from an authenticated user.
What would be a "standard way"? > but as far as I remember gmx does not put in an auth header at all Looking at any of the growing number of test mails I sent myself, I see this line in each one: X-Authenticated: #858129 Problem is this line is immediately /after/ the Received headers. As any spammer can in theory include arbitrary lines into the messages he sends, so those headers have to be deemed untrustworthy. I just wanted to check whether gxm would strip this header when delivering unauthenticated mail, but I never got this far: mail.gmx.net won't accept mails from unauthenticated users, and the MX that DNS gives me, mx0.gmx.net, immediately closes a connection without any greeting or other message. Probably because I'm connecting from a dynamic IP... To look at it from a different angle, whether or not an X-Authenticated header has any special meaning at all probably depends on the MTAs in the chain, so special knowledge is needed to be sure. And with the same kind of knowledge you'd know that mail.gmx.net is not the MX for the final destination, hence it's the sender's MSA, hence treat this as the originating IP. I know of no perfect solution, but maybe the X-Authenticated header might be a useful rule to include, with a negative score, not as an absolute fact but rather as an idication some check might have occurred. Greetings, Martin von Gagern
signature.asc
Description: OpenPGP digital signature
