Am 28.08.2013 21:05, schrieb Chris Wilson:
> Hi Marius,
>
> On Wed, 28 Aug 2013, Cyborg wrote:
>
>> This works for entire day and night, since one or more years, BUT
>> randomly, a spam slips throu with the remark, it wasn't scanned at
>> all. Which is true, as Spamassassins log shows not even the try to
>> check it.
>>
>> This mußt be true : and{ {!def:spam_score_int}{
>> eq{$authenticated_id}{} } }
>> Which means, spam_score_int was not definied.
>>
>> Conclusion: " spam = nobody/defer_ok" from the first rule was
>> never executed.
>>
>> There's is no evidence that exim ever tried it. When i resent the
>> spam i.e. from a different host, it gets detected as it should be.
>>
>> As mails get checked, there must be a logical problem in that rule,
>> or exim does a nice hidden bug with contacting spamd.
>
> It could be that a rule higher up in the ACL accepted the message
> before it got to spamd. For example, do you have a rule to allow all
> authenticated email? Or all email to a particular domain, or from a
> particular host? Without seeing the entire ACL before the spamd rule,
> it's difficult to know what to suggest.
>
>
The answere is no.
The skipped message has this header "X-Spam-Note: SpamAssassin
uebersprungen : domain=${domain:$h_to:} e=${domain:$recipients} "
which is the "your not authenticated and spamd did not give a result
either OR Antispam is disabled for that domain" rule.
As antispam is enabled and the sender is not authenticated, the
spamscore was not defined => not scanned.
But it should have been... i added debug output to find out the cause of it.