How to ignore all outgoing mail in MailScanner - SOLVED
Ronny T. Lampert
telecaadmin at gmail.com
Thu Jan 3 18:39:03 GMT 2008
> It sounds as though your internal network is more than minimally
> complex. I'm fortunate: we have only one authorized mail emitter
> internally, even if it *is* the dreaded-and-despised Lotus Domino.
Well, multiple continents and failover are adding (rightfully) to
complexity.
> Can you split your mail processing into an inbound-only server and an
> outbound-only server? We did, where I work, and that took care of a
> *lot* of problems -- while generating others, to be sure, but those
> are easily solved. Our outbound mail load is very small, compared to
> the raging torrent of mail, most of it junk, which we see inbound.
No, that is not possible as it would e.g. double the needed hardware,
add more rules to our internal mail routing etc.
But the
Scan Messages = %rules-dir%/scan.messages.rules
seems to do the trick.
I'm auto-generating this file from postfix's trusted smtp servers (3
lines bash) from which I also automatically generate my transport table.
Whitelisting is not an option as we still add headers to the mail and
also scan it -- embarassing to leak that info to the outside, if an
outgoing mail is tagges as SPAM!
The above solution seems to be the cleanest way.
Thanks for all pointers!
Cheers,
Ronny
More information about the MailScanner
mailing list