On Thu, 14 Jan 2010, Jean-Yves Avenard wrote:
Mail system is made of
Sendmail as MTA -> spamass-milter -> spamd
Legitimate users are using the sendmail server over TLS and first need
to authenticate themselves before being able to post.
Is there a way to have a particular score if the sender has
succesfully authenticated ?
Like if the sender was authenticated then score is -10.0 etc
Take a look at the Received header that your MTA inserts for an
authenticated session. It will look something like this:
Received: from [192.168.1.86] ([xxx.202.179.87])
(authenticated bits=0)
by mail.impsec.org (8.13.7/8.13.7) with ESMTP id n7OIlctS024743
(version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO)
for <jhar...@impsec.org>; Mon, 24 Aug 2009 11:47:42 -0700
The "by mail.impsec.org" would be _your_ MTA.
Such a rule might be: (warning, untested!)
header AUTH_SMTP Received =~ /\(authenticated bits=\d+\) by
mail\.impsec\.org /
score AUTH_SMTP -10.0
...substituting _your_ MTA name, of course.
--
John Hardin KA7OHZ http://www.impsec.org/~jhardin/
jhar...@impsec.org FALaholic #11174 pgpk -a jhar...@impsec.org
key: 0xB8732E79 -- 2D8C 34F4 6411 F507 136C AF76 D822 E6E6 B873 2E79
-----------------------------------------------------------------------
Rights can only ever be individual, which means that you cannot
gain a right by joining a mob, no matter how shiny the issued
badges are, or how many of your neighbors are part of it. -- Marko
-----------------------------------------------------------------------
4 days until Benjamin Franklin's 304th Birthday
