-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Paul Aviles wrote: > Matt, thanks for taking the time to answer me. > > Matt Kettler wrote: >> Erm.. that would disable RBLs in both sendmail AND spamassassin.. >> Clearly not what you want. > > More confused... OK got the part that SA is only a labeling filter. I made > the mistake of implying that anyone using SA will also use procmailrc rules > to rid of spam based on a score number like 10, seems like a good thing to > do anyway.. > > The RBLS is sendmail actually discard the email so they are rejected. What > is the purpose of SA using RBL's then if the emails will be rejected?
To clarify this part of your question: No matter what MTA you use (sendmail, qmail, postfix, etc), if you use RBL tests there, you generally will block any email connections that come from an IP address that is on one of the DNS blacklists you are using. Pros are you reduce the message load and further processing requirements on your server. Cons are you may block valid emails depending on the RBLs used and its harder to 'retrieve' a false positive block since you don't have the message. If you do not use RBLs with your MTA, you will accept the email (a lot more spam) and then be able to filter it with SpamAssassin. In your local.cf file is the skip_rbl_checks config option. It can be set 2 ways skip_rbl_checks 1 - - means do not have SpamAssassin check RBLs for the IP addresses in the Received headers. SpamAssassin will still run other rules but will not adjust the message score with regard to RBL presence skip_rbl_checks 0 - - SpamAssassin will run the RBL checks that are defined in the 20_dnsbl_tests.cf file. You can add additional RBLs in your local.cf file - - SpamAssassin does not directly block a messages because it is on an RBL, instead it assigns the associated number of points to the message score. If the message score now exceeds your defined spam threshold, then whatever actions you are taking to block messages tagged as spam will apply here Cons of doing RBL test and message blocking here is a lot more email has to get filtered by SpamAssassin which needs hardware resources to do so. Pros are any messages blocked by score elements from RBLs will be with your quarantined messages (if you don't /dev/null them) and can be retrieved from the quarantine if a user calls to complain that a message wasn't received. David Goldsmith -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.3rc2 (MingW32) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iD8DBQFF4EdB417vU8/9QfkRArc8AKCXHWanNmt1BrRkxPGUMk9ATWaCBwCgmIHC QIx8WoDsboUiRPyRi6wBxRE= =ZAek -----END PGP SIGNATURE-----
