* Matus UHLAR - fantomas wrote (31/07/08 14:07):
On 31.07.08 11:05, Chris Lear wrote:
I'm trying to improve the effectiveness of a spamassassin installation,
and there's one user who gets a lot of spam that is forwarded from
another address, which effectively kills the network tests and in some
cases messes with the BAYES score as well. I want to get rid of it.
many tests (e.g. those who chcek for dynamic IP) use last external IP, which
means some network checks will still be killed by such forwarder.
I seem to remember someone saying a while ago that it's not clear to the
average spamassassin admin (eg me) which rules use trusted and which use
external. Is there either a place that explains it all - or is there
some logic that anyone can tell me? Not crucial, but I'm interested.
I think it's the forwarder who has to take care of spam... any further
forwarding blurs the difference between ham and spam...
I agree entirely.
Chris
