Re: [Exim] Skip SPAM check for SMTP Auth'd and local sent ma…

Kezdőlap
Üzenet törlése
Válasz az üzenetre
Szerző: Mark Seamans
Dátum:  
Címzett: eli-list
CC: exim-users
Tárgy: Re: [Exim] Skip SPAM check for SMTP Auth'd and local sent mail
--
Thank You. Your logic sits better with me.
I don't trust email that comes from the internet, not to mention users I host.

Mark


On Wed, 4 Feb 2004 11:06:57 -0500
"Eli" <eli-list@???> wrote:

> Just a few things to point out here...
>
> 1st - using the +local_domains idea is not a good idea. This will cause
> emails sent by remote users TO local domains to be skipped. Also, it would
> skip ANY scans, even if just *one* of the recipients is local, since the
> DATA section is applied to the message, not applied to the message per
> recipient.
>
> 2nd - the proper way would be to enforce all your senders to use
> authentication (even relay servers should if possible - better than just
> trusting an IP address). If you can do that, you can use the "authenticated
> = *" check. However...
>
> There's no need to set an acl variable based on the authentication check -
> just use it directly since it's sender specific (which the DATA section is,
> since you can only have one sender of a message) :D
>
> It'd be as simple as something like this:
>
>         warn    message         = X-Spam-Score: $spam_score
> ($spam_score_int)
>                 !authenticated  = *
>                 spam            = nobody:true

>
> That would only run the spam scan check (and ultimately insert a header) if
> the sender is NOT authenticated via SMTP AUTH.
>
> Eli.
>
> -----Original Message-----
> From: exim-users-admin@??? [mailto:exim-users-admin@exim.org] On Behalf
> Of Bradford Carpenter
> Sent: Wednesday, February 04, 2004 3:04 AM
> To: Derrick
> Cc: exim-users@???
> Subject: Re: [Exim] Skip SPAM check for SMTP Auth'd and local sent mail
>
>
> On Tue, 03 Feb 2004 22:12:30 -0800 (PST), Derrick wrote:
>
> > Is there a way to not check for SPAM on SMTP Authenticated users? And same
> > for mail originating local? (i.e. - webmail) I did some searches, couldn't
> > find much to help, but maybe I was searching using the wrong words...
>
> You can set a couple of ACL variables in your acl_smtp_rcpt section
> where you establish whether the user is local or authenticated.
>
> acl_check_rcpt:
>
>   accept        domains = +local_domains
>              set acl_m1 = local

>
>   accept  authenticated = *
>              set acl_m2 = auth

>
> Then in your acl_smtp_data section, check the variables as a condition
> for running a spam check.
>
> acl_check_data:
>
>   warn   message = X-Spam-Score: $spam_score ($spam_bar)
>        condition = ${if or{{eq{$acl_m1}{local}}{eq{$acl_m2}{auth}}}
> {no} {yes}}
>             spam = nobody:true
>   warn   message = X-Spam-Report: $spam_report
>        condition = ${if or{{eq{$acl_m1}{local}}{eq{$acl_m2}{auth}}}
> {no} {yes}}
>             spam = nobody:true

>
>   warn   message = X-Spam-Flag: YES
>        condition = ${if or{{eq{$acl_m1}{local}}{eq{$acl_m2}{auth}}}
> {no} {yes}}
>             spam = nobody

>
>   deny   message = This message scored $spam_score points.
> Congratulations!
>        condition = ${if or{{eq{$acl_m1}{local}}{eq{$acl_m2}{auth}}}
> {no} {yes}}
>             spam = nobody:true
>        condition = ${if >{$spam_score_int}{50}{1}{0}}

>
> I believe if the mail has multiple recipients, if one of the recipients
> is local or authenticated, the spam check will be bypassed for all
> recipients of the message, since the data acl is run once per message,
> not once per user. Don't know a way around this.
>
> Brad
>
> --
>
> ## List details at http://www.exim.org/mailman/listinfo/exim-users Exim
> details at http://www.exim.org/ ##
>
>
>
> --
>
> ## List details at http://www.exim.org/mailman/listinfo/exim-users Exim details at http://www.exim.org/ ##
>



--
Mark Seamans
CCNBI, Inc.
18160 US Hwy 281N
Suite 108-207
San Antonio, TX 78232

210.481.6534 Office
210.568.8164 Direct
mark@???
http://www.ccnbi.com
--
[ Content of type application/pgp-signature deleted ]
--