Am 21.04.2015 um 16:21 schrieb Reindl Harald:
Am 21.04.2015 um 15:59 schrieb Benny Pedersen:Mark Martinec skrev den 2015-04-21 14:08:In any case, I think that RCVD_ILLEGAL_IP should not be adding score points if it sees an 0.0.0.0/8 address in a Received header field.why not add it to internal_networks in local.cf ?, why is spamassassin only have 127.0.0.1 ?, is spamassassin at fault when it comes to iana ipv4 listnings, and i belive there is listnings for ipv6 aswell my own rule of thumps is if you cant connect back to some ips, dont accept email from itthat is nonsense a 100% legit mail can made it through several hops for whatever reason and so have 192.168.0.1, 192.168.0.1 and 1921.68.0.2 in the Received headers - so you would reject that mails for *what* reason? because you can't connect to the middle hop in the local network where the message is comming from?
and BTW your "if you cant connect back to some ips, dont accept email from it" is *in general* nonsense - many well planned mail systems have completly different machines for incoming and outbound mail flow and so you are not supposed to conenct back on port 25 by defintion
frankly you have no business at all to connect back because the outgoing mailsystem is *not* the MX record for the sending domain
so please stop propose logic which only works in a small setup for a guy, his wife and his brother
signature.asc
Description: OpenPGP digital signature
