All_Trusted

[Matt Kettler]

    [ The following text is in the "ISO-8859-1" character set. ]
    [ Your display is set for the "US-ASCII" character set.  ]
    [ Some characters may be displayed incorrectly. ]

shuttlebox wrote:
> On 1/5/06, *Matt Kettler* <mkettler at evi-inc.com
> <mailto:mkettler at evi-inc.com>> wrote:
> 
>     It's a good thing the upgrade removed that statement.. setting
>     ALL_TRUSTED to a
>     0 score covers up a lot of serious problems.
> 
> 
> What kind of problems do you mean? Problems regarding other things than
> the trusted mechanism?

Just the trusted mechanism, but this affects a LOT of rules in SA. Most rules
that examine the Received: headers are affected by trusted_networks or
internal_networks. (and if neither is declared, these two are both set to the
same guess).

For what it's worth, here's a quick rundown of things affected by trust/internal
networks detection in SA 3.1.0.

affected by internal_networks:

All RBLs checks

Affected by trusted_networks:

whitelist_from_rcvd
RCVD_IN_BSP_TRUSTED
HABEAS_*
ALL_TRUSTED
HELO_DYNAMIC_* rules
MSGID_FROM_MTA_ID
FORGED_*_RCVD rules
FAKE_HELO_*
 RCVD_HELO_IP_MISMATCH
RCVD_NUMERIC_HELO
RCVD_ILLEGAL_IP
SPF plugin
AWL plugin
RelayCountry plugin
AccessDB plugin

------------------------ MailScanner list ------------------------
To unsubscribe, email jiscmail at jiscmail.ac.uk with the words:
'leave mailscanner' in the body of the email.
Before posting, read the Wiki (http://wiki.mailscanner.info/) and
the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html).

Support MailScanner development - buy the book off the website!