uhlar at fantomas
Sep 16, 2011, 7:04 AM
Post #4 of 5
On 09.09.11 17:20, Matus UHLAR - fantomas wrote:
>due to many spam problems (outbreaks) in history, we check for
>spamminess on outgoing mail servers.
>However there are rules that should not apply on them.
>- Dynamic/blacklist (except URIBL) checks
>I can avoid these by defining local server to msa_networks
>I'm sure I have to turn this off, does it also apply to dependencies?
>What about !ALL_TRUSTED dependencies?
>- SPF checks
>While we should reject/quarantine e-mail that does not match SPF, it
>should not apply to domains we are designed to send mail for .
>(SPF records include us)
>... any other ideas?
Further watching and thinking advises me to:
- skip all RBL checks that check on IP address, which means all except
rfci and ahbl
- zero (or, make nearly zero) RDNS_NONE and TVD_RCVD_SINGLE
- MAYBE define all hosts as trusted/internal
- MAYBE use first scoreset, as if we didn't do network checks, even if
we do RAZOR, PYZOR, DCC, URIBL's, rfci etc...
(would be worth checking)
Matus UHLAR - fantomas, uhlar [at] fantomas ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
I just got lost in thought. It was unfamiliar territory.