You are viewing a plain text version of this content. The canonical link for it is here.

Posted to dev@spamassassin.apache.org by Alessandro Vesely <ve...@tana.it> on 2013/03/04 18:47:47 UTC

Authentication-Results: saving a few cycles

Hi all,

I use dnswl.org to whitelist SPF-fail, for forwarders subscribed
there.  The lookup is done at the beginning of the SMTP dialog.  SA
plays much later, if at all.  The server (Courier-MTA pre-release
0.70.20130303) sets a header line like this:

Authentication-Results: wmail.tana.it;
    dnswl=pass dns.zone=list.dnswl.org
    policy.ip=127.0.11.1

What I'd like to do is to cache that result, and match it when the
DNSEval plugin needs it.  (Note that in this particular case the DNS
cache won't work, because the server is configured to read dnswl.org's
data from a local zone, a slightly different problem.)

A similar design could work for DKIM, SPF, or any checks that don't
need to be re-done, but whose contribution to the message score is wanted.

Worth?

Re: Authentication-Results: saving a few cycles

Posted by Alessandro Vesely <ve...@tana.it>.

On Thu 07/Mar/2013 22:47:36 +0100 Benny Pedersen wrote:
> Alessandro Vesely skrev den 2013-03-06 12:26:
> 
>> Yes, both should be solved by the same new plugin.
> 
> okay, maybe it could be used so in opendmarc spamassassin plugin if
> its designed well

I tried to be as generic as possible.  (But I cannot find that
opendmarc thing.)

>> Your bug's title is specific for the SPF plugin...  Should we add a
>> new bug for the new plugin, and then one for DNSEval/dnswl.org?
> 
> i would like to see seperate bugs for courier-mta AR header, that part
> should imho be seperate plugin in spamassassin

Right.  I opened new bug 6918 and attached my proposed plugin
https://issues.apache.org/SpamAssassin/attachment.cgi?id=5138&action=view

Would someone give it a try and discuss issues?

Re: Authentication-Results: saving a few cycles

Posted by Benny Pedersen <me...@junc.eu>.

Alessandro Vesely skrev den 2013-03-06 12:26:

> Yes, both should be solved by the same new plugin.

okay, maybe it could be used so in opendmarc spamassassin plugin if its 
designed well

> Your bug's title is specific for the SPF plugin...  Should we add a
> new bug for the new plugin, and then one for DNSEval/dnswl.org?

i would like to see seperate bugs for courier-mta AR header, that part 
should imho be seperate plugin in spamassassin

>> what software adds this header in your example ?
> Courier-MTA, which is GPLv3.

okay, nice btw that mta begins developement again

Re: Authentication-Results: saving a few cycles

Posted by Alessandro Vesely <ve...@tana.it>.

On Tue 05/Mar/2013 20:59:08 +0100 Benny Pedersen wrote:
> Alessandro Vesely skrev den 2013-03-04 18:47:
> 
>> Authentication-Results: wmail.tana.it;
>>     dnswl=pass dns.zone=list.dnswl.org
>>     policy.ip=127.0.11.1
> 
>> Worth?
> 
> if software that adds this header is opensource then yes, same as my
> bug here
> 
> https://issues.apache.org/SpamAssassin/show_bug.cgi?id=6899

Yes, both should be solved by the same new plugin.

Your bug's title is specific for the SPF plugin...  Should we add a
new bug for the new plugin, and then one for DNSEval/dnswl.org?

> what software adds this header in your example ?

Courier-MTA, which is GPLv3.

Re: Authentication-Results: saving a few cycles

Posted by Benny Pedersen <me...@junc.eu>.

Alessandro Vesely skrev den 2013-03-04 18:47:

> Authentication-Results: wmail.tana.it;
>     dnswl=pass dns.zone=list.dnswl.org
>     policy.ip=127.0.11.1

> Worth?

if software that adds this header is opensource then yes, same as my 
bug here

https://issues.apache.org/SpamAssassin/show_bug.cgi?id=6899

what software adds this header in your example ?