<HTML dir=ltr><HEAD><TITLE>Re: Content scanning / MCP?</TITLE>
<META http-equiv=Content-Type content="text/html; charset=unicode">
<META content="MSHTML 6.00.6000.16788" name=GENERATOR></HEAD>
<BODY>
<DIV id=idOWAReplyText13739 dir=ltr>
<DIV dir=ltr><FONT face=Arial color=#000000 size=2>We have it setup now where it is looking for the "always allowed" phrases in the subject and body of all inbound messages, and gives an MCP score of -100 when it hits. The only problem with this is it still goes to the second spamassassin check and if it gets flagged as spam, the fact that it had a -100 MCP scored does not effect the SA score and it is still not delivered. Is there a way to set a rule so that if the MCP score is below a certain threshold it stops scanning and delivers the message? </FONT></DIV></DIV>
<DIV dir=ltr><BR>
<HR tabIndex=-1>
<FONT face=Tahoma size=2><B>From:</B> mailscanner-bounces@lists.mailscanner.info on behalf of Patrick Saweikis<BR><B>Sent:</B> Mon 1/12/2009 2:14 PM<BR><B>To:</B> mailscanner@lists.mailscanner.info<BR><B>Subject:</B> RE: Content scanning / MCP?<BR></FONT><BR></DIV>
<DIV dir=ltr>
<DIV id=idOWAReplyText41250 dir=ltr>
<DIV dir=ltr><FONT face=Arial color=#000000 size=2>I apologize, I should have given more detail in my question...</FONT></DIV>
<DIV dir=ltr><FONT face=Arial size=2></FONT> </DIV>
<DIV dir=ltr><FONT face=Arial size=2>I have about 10,000 users, covering around 1000 domains. We have written custom code to allow individual spam actions and individual spam scores per user, per domain. We pull this from a MYSql table. We now have a client who needs to have certain messages allowed through 100% of the time, we were assuming that setting a high value of 99 to the phrase would work, but we need to be able to limit this per user / per domain as we do spam scores and actions from the MYSql tables. We are only worried about detection after the MTA processes the message. We were thinking of implementing something similar to the balcklist/whitelist custom functions.</FONT></DIV><FONT face=Arial size=2></FONT></DIV>
<DIV dir=ltr><FONT face=Arial size=2></FONT><FONT face=Arial size=2></FONT> </DIV>
<DIV dir=ltr> </DIV>
<DIV dir=ltr><FONT face=Arial size=2>Any help would be appreciated.</FONT></DIV>
<DIV dir=ltr><FONT face=Arial size=2></FONT> </DIV>
<DIV dir=ltr><FONT face=Arial size=2>Patrick.</FONT></DIV>
<DIV dir=ltr> </DIV>
<DIV dir=ltr><BR></DIV>
<DIV dir=ltr>
<HR tabIndex=-1>
</DIV>
<DIV dir=ltr><FONT face=Tahoma size=2><B>From:</B> mailscanner-bounces@lists.mailscanner.info on behalf of Kai Schaetzl<BR><B>Sent:</B> Fri 1/9/2009 4:31 PM<BR><B>To:</B> mailscanner@lists.mailscanner.info<BR><B>Subject:</B> Re: Content scanning / MCP?<BR></FONT><BR></DIV>
<DIV>
<P><FONT size=2>Patrick Saweikis wrote on Fri, 9 Jan 2009 14:20:51 -0600:<BR><BR>> We have a user on our mail system who wants to always ALLOW<BR>> messages with specific content in the message subject and body through.<BR>> Does anyone know if this is possible? If so, how would we accomplish it?<BR>> I have been looking into using MCP, but from what I have read that is<BR>> for denying specific message content only<BR><BR>MCP is basically a second spamassassin run. You can just do the same<BR>during the normal SA run. Stephen pointed at some caveats. There is an SA<BR>plugin for simple whitelisting by subject, it just needs to be enabled in<BR>the *.pre file in /etc/mail/spamassassin. But this will whitelist for all<BR>users.<BR>I think the better approach is to whitelist the assumed senders or give<BR>that user a special alias that doesn't get filtered and that he can hand<BR>out to those where he thinks there might be delivery problems.<BR><BR>Kai<BR><BR>--<BR>Kai Schätzl, Berlin, Germany<BR>Get your web at Conactive Internet Services: <A href="http://www.conactive.com/">http://www.conactive.com</A><BR><BR><BR><BR>--<BR>MailScanner mailing list<BR>mailscanner@lists.mailscanner.info<BR><A href="http://lists.mailscanner.info/mailman/listinfo/mailscanner">http://lists.mailscanner.info/mailman/listinfo/mailscanner</A><BR><BR>Before posting, read <A href="http://wiki.mailscanner.info/posting">http://wiki.mailscanner.info/posting</A><BR><BR>Support MailScanner development - buy the book off the website!<BR></FONT></P></DIV></DIV></BODY></HTML>