[Postfixbuch-users] Spamassasin Problem

[Sebastian Wienforth]

Til Obes schrieb:
> Die Email wurde per SMTPS auf Port 465 gesendet und ich war authentifiziert.
> Wie stelle ich es an, dass Emails, die so abgeschickt wurden, in sa
> automatisch z.B. -2 bekommen?
>
>   
Hatte das Problem vor kurzem auch, ich häng jetzt einfach mal meine 
Mitschrift zu dem Thema an:

[snip]
http://wiki.apache.org/spamassassin/DynablockIssues
http://www200.pair.com/mecham/spam/bypassing.html#10

ab postfix 2.3: smtpd_sasl_authenticated_header = yes in main.cf setzen
und dazu http://wiki.apache.org/spamassassin/POPAuthPlugin
sollte dann eigneltich gehen. Solange noch der alte Postfix läuft:


Here is also another way to reduce the spam score for SASL auth users 
that can be used with Postfix version 2.1 or newer. This should add a 
'X-SMTP-Auth: no' header to all messages except authenticated. The 
SpamAssassin rule then adds -10 points if this header is missing:

# In main.cf:
smtpd_data_restrictions =
    reject_unauth_pipelining
    permit_sasl_authenticated
    check_client_access regexp:/etc/postfix/add_auth_header.regexp

# In /etc/postfix/add_auth_header.regexp:
/^/ PREPEND X-SMTP-Auth: no

# In SpamAssassin's local.cf:
header __NO_SMTP_AUTH X-SMTP-Auth =~ /^no$/
meta SMTP_AUTH !__NO_SMTP_AUTH
describe SMTP_AUTH Message sent using SMTP Authentication
tflags SMTP_AUTH nice
score SMTP_AUTH -10

In order to prevent confusion (the header would end up getting written 
again after the message was processed by amavisd-new), you should 
override smtpd_data_restrictions on the amavisd-new reinjection port. In 
master.cf add
  -o smtpd_data_restrictions=

127.0.0.1:10025    inet    n    -    n    -    -    smtpd
    -o content_filter=
    -o smtpd_data_restrictions=
    [other typical amavisd-new reinjection port overrides]


[/snip]
Vielleicht hilfts ja weiter...

Sebastian Wienforth