> -----Message d'origine----- > De : Karsten Bräckelmann [mailto:guent...@rudersport.de] Envoyé : 16 > septembre 2009 14:21 À : users@spamassassin.apache.org Objet : Re: > Skip DNSBL checks for a specific IP/Net > > On Wed, 2009-09-16 at 13:59 -0400, Philippe Ratté wrote: > > I am looking for a way to ask SA to skip DNSBL checks for a specific > > IP > / > > subnet, is it possible to do this ? > > Hmm, why would you want to do that? There are pretty much two > scenarios that immediately come to mind.
Hi Karsten. > > You don't want to do BL checks against an SMTP that forwards mail to > you. In that case, you should extend your trusted and internal > networks, so the handing-over IP to that forwarder is being checked instead. > True. The IPs I'd like to remove from RBL checks do not belong to us. > You want to get rid of PBL style hits against your own users. In which > case the answer would be to simply not scan mail by your own, AUTH'ed > users. > The IPs are not my own users. > If it is anything else, we might be much better able to help you, if > we know about the issue -- rather than what you think would be the > best solution. ;) The situation is about Hotmail. Yesterday a customer told me he was having problems between his corporative account and Hotmail, the customers of my customer were unable to contact him. I noticed at that time 65.55.111.100 was part of SORBS BL. http://www.us.sorbs.net/lookup.shtml?65.55.111.100 indicates : Address: 65.55.111.100 Record Created: Wed Oct 29 19:00:03 2008 GMT Record Updated: Mon Sep 14 08:56:51 2009 GMT Additional Information: [ Updated via: Report 'o Matic ] Received: from blu0-omc2-s25.blu0.hotmail.com (blu0-omc2-s25.blu0.hotmail.com [65.55.111.100]) by anaconda.sorbs.net (Postfix) with ESMTP id E0D9B2E05D for <[email]>; Mon, 14 Sep 2009 14:31:01 +1000 (EST) Currently active and flagged to be published in DNS 65.55.111.100 is blu0-omc2-s25.blu0.hotmail.com, part of their "smtp farm". I told my customer that he needed to tell HIS customers that they need to tell Hotmail that they are listed in SORBS. This information is hard to understand for a person who pays to get email support :) Customer asked "can you white-list them temporarly ?" We have a firewall with a network setup which allow me to bypass RBL + SpamAssassin easily. We did this with most of Hotmail's IPs until we started receiving spam from valid Hotmail accounts. I do not want to let Hotmail completely white listed, my idea was to skip RBL checks and keep other checks in place. > > > > Id like something like skip_rbl_checks 1 from=1.2.3.4 > > Such a constraint is not possible. However, if you *really* need > something to that effect, you could re-define the existing rules in > your site-config, meta'ed with an additional header rule that excludes > these hosts based on the Received headers or last-external. > Checking against Received headers is maybe a good idea, but I am curious if you have in mind a better solution :) I need help to write the rules. > Alternatively, without re-defining existing rules, you could write > similar metas on top, that counter such a rule hit. Sorry I do not understand this one, I'm not very familiar with SA rules yet but still learning :) > > > -- > char > *t="\10pse\0r\0dtu...@ghno\x4e\xc8\x79\xf4\xab\x51\x8a\x10\xf4\xf4\xc4 > "; main(){ char h,m=h=*t++,*x=t+2*h,c,i,l=*x,s=0; for (i=0;i<l;i++){ > i%8? > c<<=1: > (c=*++x); c&128 && (s+=h); if (!(h>>=1)||!t[s+h]){ > putchar(t[s]);h=m;s=0; }}} > Thanks alot for your reply. Have a nice day
