Hello,
the spam/malware etc checks are available only within ACL context,
typically called in the smtp_data ACL.
And that's fine if you basically are going to scan every last mail, as one
can set result variables there and use those later when individual users
are routed/handled.
But consider a scenario where accounts can have filtering disabled and
expansion happens:
user1@domain expanding to user2 and user3
user1 has no filtering enabled at all, thus those scans at DATA time are
not performed.
user 2 has filtering level 7, user3 at 5, but since filtering was never
done they have the variables with the results available of course.
I know of course that one can use a router and call SpamAssassin in a
transport to address this for SA, but how does one get to rescan a mail
with rspamd or clamav so late in the game?
Can the not_smtp ACL be abused for that with a pipe transport or similar?
Alternatively (but I doubt that's possible) can a collated list of target
address (as in the "exim -v -bv adress" command) be created during ACL
time, similar to the SMTP RCPT recipients one?
Don't suggest amavisd please. ^o^
Regards,
Christian
--
Christian Balzer Network/Systems Engineer
chibi@??? Rakuten Communications