spamassassin-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Michael Scheidell <michael.scheid...@secnap.com>
Subject Q about unwhitelist from:
Date Tue, 19 Jul 2011 13:57:10 GMT
since hotels.com has started to dkim sign their spam, email, I would 
like to unwhitelist their 'spam' from lines.

Yes, it is nice to get hotels.com reservation acks without them being 
marked as spam, but maybe if they abuse the privledge, we revoke it.

found this in sa 3.3.2 sa-updated :

60_whitelist_dkim.cf:def_whitelist_from_dkim  *@mail.hotels.com
60_whitelist_dkim.cf:def_whitelist_from_dkim  *@email.hotels.com

looks like email envelope is normal verp guk:
x-envelope-from:<bounce-1935712_HTML-120300771-17590292-198875-8691@bounce.mail.hotels.com>

dkim signed h=mail.hotels.com
header From is info@mail.hotels.com

so, my Q:  if sa stock /updated rules have def_whitelist as above, will 
this just unwhitelist 'info@'?

unwhitelist_from_dkim  info@mail.hotels.com
tflags USER_IN_DEF_DKIM_WL net nice noautolearn

if I add to 'local.cf' so it comes after the def_whitelist_from?

would more specific (info@) override least specific? *@ or is does it 
depend on precedence?

-- 
Michael Scheidell, CTO
o: 561-999-5000
d: 561-948-2259
 >*| *SECNAP Network Security Corporation

    * Best Mobile Solutions Product of 2011
    * Best Intrusion Prevention Product
    * Hot Company Finalist 2011
    * Best Email Security Product
    * Certified SNORT Integrator

______________________________________________________________________
This email has been scanned and certified safe by SpammerTrap(r). 
For Information please see http://www.secnap.com/products/spammertrap/
______________________________________________________________________  

Mime
View raw message