Hi, > Why does DKIM_VERIFIED have a zero score in 50_scores.cf? > > Anybody, including spammers, can do DKIM. You could make have it > a small negative score like -0.5 or so.
Then shouldn't it just be eliminated as a rule entirely? There are also rules that apparently depend on it: Oct 31 14:22:58.055 [2067] info: rules: meta test L_UNVERIFIED_GMAIL has dependency 'DKIM_VERIFIED' with a zero score It looks like perhaps it's there for legacy reasons? From 25_dkim.cf: # old, declared for compatibility with pre-3.3, should have scores 0 full DKIM_VERIFIED eval:check_dkim_valid() tflags DKIM_VERIFIED net nice > I've added the following entries to local.cf, but I suspect this is > what I'm doing wrong. I don't mean to whitelist all of constant > contact. > > whitelist_from_dkim *@in.constantcontact.com > whitelist_from_dkim *@bertolini-sales.com ... > I think you want > whitelist_from_dkim *@bertolini-sales.com auth.ccsend.com Yes, that made it work as expected. My example was from the amavisd docs. Sometimes it has the server name afterwards, and sometimes it doesn't: whitelist_from_dkim *@ebay.com whitelist_from_dkim *@* paypal.com It sounds like it's just a way to provide more fine-grained control? Benny wrote: > whitelist_from_dkim *@auth.ccsend.com I'd rather not whitelist all of auth.ccsend.com, but only as it relates to bertolini-sales.com, just as I wouldn't want to whitelist all of constantcontact.com, or am I misunderstanding? Thanks again, Alex
