Re: [Exim] Fighting fake spam headers

Pàgina inicial
Delete this message
Reply to this message
Autor: Tor Slettnes
Data:  
A: Ben Giddings
CC: exim-users
Assumpte: Re: [Exim] Fighting fake spam headers
On Jun 13, 2004, at 08:37, Ben Giddings wrote:

> Unfortunately, I found that some clever spammer *ssh*les are putting in
> fake Spamassassin headers, marking their spam as not spam. So, what I
> want to do is make sure my machine always scans messages.
>
> I thought a good way to do that would be to make sure my machine's name
> was in the X-Spam-Checker-Version header, but everything I tried to do
> to use that ended up messing everything up, and creating a mail loop.


You probably want to use Exiscan-ACL (or perhaps SA-Exim) to run
SpamAssassin at SMTP time, rather than setup a router to do a SA scan
during delivery. That way, if a message is classified as spam, it can
be rejected during the transaction, so that you don't have to bounce
rejected mail to the (nearly always forged) sender address, and/or drop
the mail in a black hole (a problem in case of normal mail
misclassified as spam).

If you happen to run Debian, you can get the "exim4-daemon-heavy"
package (if you are running Woody, you will need to get it from a
separate APT source). Read the documentation in
/usr/share/doc/exim4-daemon-heavy/exiscan-*.

Otherwise, get the Exiscan-ACL patch from:
    http://duncanthrax.net/exiscan-acl/


-tor