SASL authenticated users marked as spam
Dhawal Doshy
dhawal at netmagicsolutions.com
Fri Aug 18 15:23:23 IST 2006
Tony Stocker wrote:
> All,
>
> We set up our server to allow SASL authenticated users to be able to
> send (relay) mail through the server. This way they can use their
> mail clients at home or on the road and we don't have to worry about
> the ip address. However in early testing of this we found that
> several emails from users who had authenticated were getting marked as
> spam by SA (full score line below). Is there a way to set a rule that
> will put SASL authenticated users as 'safe' or at least give a
> negative score?
>
> Aug 8 22:38:55 pps-mail MailScanner[31647]: Message BBF838EB2C.21AF6
> from 68.106.108.165 (tony.stocker at example.com) to abc.com,def.com is
> spam, SpamAssassin (not cached, score=5.266, required 3, BAYES_50
> 0.00, INFO_TLD 1.27, RCVD_IN_NJABL_DUL 1.95, RCVD_IN_SORBS_DUL 2.05)
>
> Both of the IN_*_DUL rules seem to indicate a 'hit' because of being a
> "dial up user" based on what I could find on the web. However I
> believe, if we set things up right, that only authenticated users
> should be able to submit messages into the system. So should I just
> disable these rules? That seems a little ham-fisted to me, and I
> don't want to degrade spam detection I just don't want our users own
> outbound mails getting marked as spam.
>
> Any ideas?
Read this..
http://wiki.apache.org/spamassassin/DynablockIssues
See if your MTA will add a X-Auth OR a similar header for authenticated
users. Finally, write a good rule to assign such mails -ve points.
- dhawal
More information about the MailScanner
mailing list