I am using Spamassassin 3.4.0 called by spamass-milter with Postfix 2.11
on Ubuntu 14.04. I can't get SA to recognize Auth-results headers added
by policyd-spf, a Postfix policy server.
If I run SA with -D -lint with the message source (as received) piped
into it, it works and the headers are recognized and used.
However, when called through the milter SPF checks are (re)done by SA.
Looking at
/usr/share/perl5/Mail/SpamAssassin/Plugin/SPF.pm
it seems that
my @internal_hdrs = split("\n", $scanner->get('ALL-INTERNAL'));
is parsed for Auth-results and it doesn't find anything. In fact, it
seems that ALL-INTERNAL only has 3 headers: X-Envelope-From,
X-Envelope-To and Received.Changing to ALL makes it work, but I was wondering what are the security implications and are if there other plugins that are not seeing all the headers. Cheers, Elod G
