> On Mon, 2009-06-08 at 11:59 +0200, Matus UHLAR - fantomas wrote: > > > On Mon, 2009-06-08 at 10:14 +0530, Anshul Chauhan wrote: > > > > I can't use RBL because most of my users use datacards & their ip > > > > addresses are listed in RBL in SBL & XBL & SPAMCOP. > > > > On 08.06.09 11:56, Karsten Bräckelmann wrote: > > > As has been suggested by various others, just do not scan outgoing mail > > > from authenticated users. > > > > Actually, such mail _should_ be scanned, for cases when they start spreading > > spam.
On 08.06.09 12:21, Karsten Bräckelmann wrote: > By authenticated users? So that's no bot spam, and the user spams > deliberately and consciously... says who? Afaik spamware often uses outlook's SMTP engine, so it's quite common for those to be distributed with authentication info. Not even talking about customers' mail proxies that accept mail from intranet w/o authentication (although we recomment users not to do that) and submit them with authentication to ISP's relays. Both are especially nice if any other machine on customers' intranet is owned by a bot or even an open relay. > Anyway, IMHO -- you can not scan outgoing mail sent by authenticated > users submitted directly from dial-up lines. They are almost guaranteed > to be listed by PBL and DUL style lists. I think that SA skips RBL checks for authenticated clients, which should avoid this problem. -- Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/ Warning: I wish NOT to receive e-mail advertising to this address. Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu. Christian Science Programming: "Let God Debug It!".
