Re: [exim] Abuse Bypassing SA when in To or CC

Page principale
Supprimer ce message
Répondre à ce message
Auteur: Ted Cooper
Date:  
À: exim-users
Sujet: Re: [exim] Abuse Bypassing SA when in To or CC
Gaurav Pruthi wrote:
> Hi,
>
> Spammers bypass the SA check when they put abuse@??? in To or CC
> field. And putting genuine mail IDs in Other headers.
> Here is the ACL i have in exim
>
> check_recipient:
>
>
>   warn     message       = X-SA-Do-Not-Rej: Yes
>            local_parts   = postmaster:abuse

>
>
>  warn     message       = X-SA-Do-Not-Run: Yes
>         local_parts   = abuse:MAILER-DAEMON

>
>
> This ACL prevents SA to run & reject if it has abuse in its header.
>
> How can i modify this acl to run SA in case it has more recepient other than
> abuse, postmaster or MAILER-DAEMON.
>
>


I hardwire anything that's going to abuse, mailer-daemon or postmaster
so that it can only have 1 recipient (more than one flat out rejects the
entire mail with a message to that saying why) and will only be
delivered to a fixed account (it has its own special router and
transport triggered by an $acl_c var)

--
The Exim Manual
http://www.exim.org/docs.html
http://www.exim.org/exim-html-current/doc/html/spec_html/index.html