Hello Guys,
im running SA 3.2.4 and, on the same machine, horde/imp as webmail
application.
Sometimes, mails sent through imp are getting flagged as SPAM
because of RBL checks, for example:
Content analysis details: (8.4 points, 8.0 required)
pts rule name description
---- ---------------------- --------------------------------------------------
0.3 TVD_RCVD_SINGLE TVD_RCVD_SINGLE
3.0 BOTNET_IPINHOSTNAME Hostname contains its own IP address
[botnet_ipinhosntame,ip=201.67.93.102,rdns=201-67-93-102.gnace704.dsl.brasiltelecom.net.br]
0.0 UNPARSEABLE_RELAY Informational: message has unparseable relay lines
0.0 HTML_MESSAGE BODY: HTML included in message
5.0 RCVD_IN_PBL RBL: Received via a relay in Spamhaus PBL
[201.67.93.102 listed in zen.spamhaus.org]
0.1 RDNS_NONE Delivered to trusted network by a host with no rDNS
Content analysis details: (11.7 points, 8.0 required)
pts rule name description
---- ---------------------- --------------------------------------------------
5.0 RCVD_IN_PBL RBL: Received via a relay in Spamhaus PBL
[201.11.150.2 listed in zen.spamhaus.org]
5.0 RCVD_IN_XBL RBL: Received via a relay in Spamhaus XBL
1.6 TVD_RCVD_IP TVD_RCVD_IP
0.0 HTML_MESSAGE BODY: HTML included in message
0.1 RDNS_NONE Delivered to trusted network by a host with no rDNS
Well .... in fact i would like my webmail sent applications to be
considered 'trusted' and not pass through SA rules, but i dont know how
to do that. I think i'm having this kind of behavior because IMP is
inserting Received: headers with real ip users apparently when remote IP
has reverse and always with X-Originating-IP
(with remote IP address as X-Originating-IP)
Return-Path: <[EMAIL PROTECTED]>
Received: from ( [unknown]) by correio.solutti.com.br (Horde MIME library)
with HTTP; Sat, 03 May 2008 11:34:55 -0300
Message-ID: <[EMAIL PROTECTED]>
Date: Sat, 03 May 2008 11:34:55 -0300
From: [EMAIL PROTECTED]
To: [EMAIL PROTECTED]
Subject: proposta comercial
MIME-Version: 1.0
Content-Type: multipart/alternative;
boundary="=_1j9plxzuetq8"
Content-Transfer-Encoding: 7bit
User-Agent: Internet Messaging Program (IMP) H3 (4.1.3)
X-Originating-IP: 201.67.93.102
X-Remote-Browser: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1;
.NET CLR 1.1.4322)
(with remote IP address sa Received: header)
Return-Path: <[EMAIL PROTECTED]>
Received: from 201-11-150-2.gnace702.dsl.brasiltelecom.net.br
(201-11-150-2.gnace702.dsl.brasiltelecom.net.br [201.11.150.2]) by
correio.solutti.com.br (Horde MIME library) with HTTP; Sat, 03 May 2008
12:22:55 -0300
Message-ID: <[EMAIL PROTECTED]>
Date: Sat, 03 May 2008 12:22:55 -0300
From: [EMAIL PROTECTED]
To: [EMAIL PROTECTED]
Subject: teste
MIME-Version: 1.0
Content-Type: multipart/alternative;
boundary="=_2pwudsfd55c0"
Content-Transfer-Encoding: 7bit
User-Agent: Internet Messaging Program (IMP) H3 (4.1.3)
X-Originating-IP: 201.11.150.2
X-Remote-Browser: Mozilla/5.0 (Windows; U; Windows NT 5.1; pt-BR; Alexa;
rv:1.8.1.14) Gecko/20080404 Firefox/2.0.0.14
Question is ... how would be the correct way of whitelisting my
local sent messages through webmail ?
--
Atenciosamente / Sincerily,
Leonardo Rodrigues
Solutti Tecnologia
http://www.solutti.com.br
Minha armadilha de SPAM, NÃO mandem email
[EMAIL PROTECTED]
My SPAMTRAP, do not email it
