Am 19.11.2015 um 11:30 schrieb Benny Pedersen:
Reindl Harald skrev den 2015-11-19 11:18:oh yeah let include a complete MTA in spamassassin to solve a non-existing problem since SPF in SA works out-of-the-boxdid you fix all bugs ?, i can still count more then one bug in bz.apache.org for spf
interesting argumentation - following that we had to shutdown all computers - do you *really* thing the spf-policyd's are bugfree?
here you go: https://bugzilla.redhat.com/show_bug.cgi?id=1138206 _____________________________ "HELO_reject = SPF_Not_Pass" is a plain wrong default, see below"Mail_From_reject = Fail" is correct and the same value has to be default for "HELO_reject" because otherwise you reject legit mail - in that case it was a order confirmation
http://www.openspf.org/Why?s=helo;id=mail.template-help.com;ip=69.65.10.164The domain mail.template-help.com has declared using SPF that it does not send mail through mail.template-help.com (69.65.10.164). However, the domain is still testing its SPF policy, so the message !!! should not have been rejected !!!
_____________________________
you gain nothing with SA speaking SMTP except unmanageable load directly to a expensive perl application where most of the crap don't make it through inbound SMTP before milterstrolling is okay
no and if you think so do it somewehere in a child board
signature.asc
Description: OpenPGP digital signature
