spamassassin-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Leonardo Rodrigues Magalhães <leolis...@solutti.com.br>
Subject whitelisting webmail application
Date Sat, 03 May 2008 15:51:32 GMT

    Hello Guys,

    im running SA 3.2.4 and, on the same machine, horde/imp as webmail 
application.

    Sometimes, mails sent through imp are getting flagged as SPAM 
because of RBL checks, for example:

Content analysis details:   (8.4 points, 8.0 required)

 pts rule name              description
---- ---------------------- --------------------------------------------------
 0.3 TVD_RCVD_SINGLE        TVD_RCVD_SINGLE
 3.0 BOTNET_IPINHOSTNAME    Hostname contains its own IP address
[botnet_ipinhosntame,ip=201.67.93.102,rdns=201-67-93-102.gnace704.dsl.brasiltelecom.net.br]
 0.0 UNPARSEABLE_RELAY      Informational: message has unparseable relay lines
 0.0 HTML_MESSAGE           BODY: HTML included in message
 5.0 RCVD_IN_PBL            RBL: Received via a relay in Spamhaus PBL
                            [201.67.93.102 listed in zen.spamhaus.org]
 0.1 RDNS_NONE              Delivered to trusted network by a host with no rDNS



Content analysis details:   (11.7 points, 8.0 required)

 pts rule name              description
---- ---------------------- --------------------------------------------------
 5.0 RCVD_IN_PBL            RBL: Received via a relay in Spamhaus PBL
                            [201.11.150.2 listed in zen.spamhaus.org]
 5.0 RCVD_IN_XBL            RBL: Received via a relay in Spamhaus XBL
 1.6 TVD_RCVD_IP            TVD_RCVD_IP
 0.0 HTML_MESSAGE           BODY: HTML included in message
 0.1 RDNS_NONE              Delivered to trusted network by a host with no rDNS


    Well .... in fact i would like my webmail sent applications to be 
considered 'trusted' and not pass through SA rules, but i dont know how 
to do that. I think i'm having this kind of behavior because IMP is 
inserting Received: headers with real ip users apparently when remote IP 
has reverse and always with X-Originating-IP

(with remote IP address as X-Originating-IP)

Return-Path: <myuser@solutti.com.br>
Received: from  ( [unknown]) by correio.solutti.com.br (Horde MIME library)
    with HTTP; Sat, 03 May 2008 11:34:55 -0300
Message-ID: <20080503113455.stj6j0flwkso048c@correio.solutti.com.br>
Date: Sat, 03 May 2008 11:34:55 -0300
From: myuser@solutti.com.br
To: otheruser@solutti.com.br
Subject: proposta comercial
MIME-Version: 1.0
Content-Type: multipart/alternative;
    boundary="=_1j9plxzuetq8"
Content-Transfer-Encoding: 7bit
User-Agent: Internet Messaging Program (IMP) H3 (4.1.3)
X-Originating-IP: 201.67.93.102
X-Remote-Browser: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1;
    .NET CLR 1.1.4322)



(with remote IP address sa Received: header)

Return-Path: <myuser@solutti.com.br>
Received: from 201-11-150-2.gnace702.dsl.brasiltelecom.net.br
    (201-11-150-2.gnace702.dsl.brasiltelecom.net.br [201.11.150.2]) by
    correio.solutti.com.br (Horde MIME library) with HTTP; Sat, 03 May 2008
    12:22:55 -0300
Message-ID: <20080503122255.6uqhmc7pk4k8g4g4@correio.solutti.com.br>
Date: Sat, 03 May 2008 12:22:55 -0300
From: myuser@solutti.com.br
To: otheruser@solutti.com.br
Subject: teste
MIME-Version: 1.0
Content-Type: multipart/alternative;
    boundary="=_2pwudsfd55c0"
Content-Transfer-Encoding: 7bit
User-Agent: Internet Messaging Program (IMP) H3 (4.1.3)
X-Originating-IP: 201.11.150.2
X-Remote-Browser: Mozilla/5.0 (Windows; U; Windows NT 5.1; pt-BR; Alexa;
    rv:1.8.1.14) Gecko/20080404 Firefox/2.0.0.14



    Question is ... how would be the correct way of whitelisting my 
local sent messages through webmail ?


-- 


	Atenciosamente / Sincerily,
	Leonardo Rodrigues
	Solutti Tecnologia
	http://www.solutti.com.br

	Minha armadilha de SPAM, NÃO mandem email
	gertrudes@solutti.com.br
	My SPAMTRAP, do not email it





Mime
View raw message