You are viewing a plain text version of this content. The canonical link for it is here.

Posted to users@spamassassin.apache.org by "Casartello, Thomas" <tc...@wsc.ma.edu> on 2010/10/22 22:00:35 UTC

ALL_TRUSTED

Hello,



I'm having an issue with the ALL_TRUSTED rule in SA 3.3.1. I recently rebuilt my server running SA, and now for some reason the ALL_TRUSTED rule is not triggering when a user sends a message using SASL authentication from outside our site. Before it would work when the sending IP matched our trusted networks list, and if the person sent directly through our server using SASL from off site. Now the SASL from off site doesn't make the rule trigger so we are getting a lot of false positives. Any help would be appreciated.



Thomas E. Casartello, Jr.

Staff Assistant - Wireless/Linux Administrator

Information Technology

Wilson 105A

Westfield State College

(413) 572-8245



Red Hat Certified Technician (RHCT)

Cisco Certified Network Associate (CCNA)

Re: ALL_TRUSTED

Posted by Bob Proulx <bo...@proulx.com>.

Casartello, Thomas wrote:
> I'm having an issue with the ALL_TRUSTED rule in SA 3.3.1. I
> recently rebuilt my server running SA, and now for some reason the
> ALL_TRUSTED rule is not triggering when a user sends a message using
> SASL authentication from outside our site. Before it would work when
> the sending IP matched our trusted networks list, and if the person
> sent directly through our server using SASL from off site. Now the
> SASL from off site doesn't make the rule trigger so we are getting a
> lot of false positives. Any help would be appreciated.

Browse through this following documentation.

  http://wiki.apache.org/spamassassin/TrustPath

  http://wiki.apache.org/spamassassin/TrustedRelaysDebugExample

  http://wiki.apache.org/spamassassin/HowToDebug

Then run 'spamassassin --lint' to make sure there aren't any hidden
configuration errors.  Then run an example message with the problem
through 'spamassassin -t -D 2>&1 | less +/relay.*trusted' and look at
the result.  There should be a clue in or around that debug output
information that will say what is happening.

Then run

  spamassassin --lint

to make sure there aren't any hidden configuration errors.  Then run
an example message with the problem through (piped to stdin)

  spamassassin -t -D 2>&1 | less +/relay.*trusted

and look at the result.  There should be a clue in or around that
debug output information that will say what is happening.

Bob

Re: ALL_TRUSTED

Posted by Karsten Bräckelmann <gu...@rudersport.de>.

On Fri, 2010-10-22 at 16:00 -0400, Casartello, Thomas wrote:
> I’m having an issue with the ALL_TRUSTED rule in SA 3.3.1. I recently
> rebuilt my server running SA, and now for some reason the ALL_TRUSTED
> rule is not triggering when a user sends a message using SASL
> authentication from outside our site. Before it would work when the
> sending IP matched our trusted networks list, and if the person sent
> directly through our server using SASL from off site. Now the SASL
> from off site doesn’t make the rule trigger so we are getting a lot of
> false positives. Any help would be appreciated.

You forgot to include the link to a sample, showing the raw message, at
least all headers.


-- 
char *t="\10pse\0r\0dtu\0.@ghno\x4e\xc8\x79\xf4\xab\x51\x8a\x10\xf4\xf4\xc4";
main(){ char h,m=h=*t++,*x=t+2*h,c,i,l=*x,s=0; for (i=0;i<l;i++){ i%8? c<<=1:
(c=*++x); c&128 && (s+=h); if (!(h>>=1)||!t[s+h]){ putchar(t[s]);h=m;s=0; }}}