On Tue, 2010-03-09 at 02:36 -0700, LuKreme wrote:
> On 08-Mar-10 23:51, Brian wrote:
> > Yes, but that does not answer my question {and is once more Postfix
> > biased} AFAIK Postfix is totally unable to reject mail at SMTP time that
> > Spamassassin decides IS SPAM without the aid of a milter or policy
> > deamon of some kind. Unless you know different?
>
> You don't let messages even GET to SA until they pass sane checks (like
> reject_non_fqdn_sender and reject_non_fqdn_recipient).
Which spam happily passes, hence the need for Spamassassin to do content
inspection - unless you are telling me Postfix can offer the same level
of content inspection as Spamassassin? (Clue: stock answer - 'Postfix
is an MTA, it does not do......)
>
> > Natively It can happily do it after accepting the mail (hint - a bit
> > late then...) with an after queue filter, but this is prone to the
> > phenomenon that is 'Postscatter' -sending the message back to the
> > (often) forged sender.
>
> You never send back a spam that you accepted. You reject it, deliver it,
> or discard it. *Never* bounce backscatter.
Which Postfix *CANNOT* do with Spamassassin *UNLESS* you use the milter.
Unless you know otherwise...
>
> > Postfix, much that I love it, has some gaping holes in it's feature set.
>
> No, it really doesn't.
Yes it does, see above. Another example header and body checks that
don't support any kind of whitelisting. No native support for DKIM, no
sensible native content filters.
>
> > It really is an MTA for the 1990's. The need to bolt in an Sendmail
> > Milter to get it to reject Spamassassin tagged mail at the SMTP stage is
> > a glaring example IHMO - But all this is very much OT.
>
> If you want milters, postfix has supported them for years. They are not
> necessary in this case.
OK Lukreme. Tell me how you get Postfix to reject spam on content AT
SMTP TIME - NOT AFTER ACCEPTING IT when Spamassassin decides that it is
SPAM. Such a case where the incoming mail meets all other SMTP criteria
(has PTR, PTR rrdns matches, not listed on any RBL, is to a valid
recipient). Let's say, for the sake of simplicity, it matches a a
Spamassassin body based metarule. How do you do this natively in Postfix
without the use of a Milter or Policy Daemon of some kind? I'd really
like to know.
