http://bugzilla.spamassassin.org/show_bug.cgi?id=2462 ------- Additional Comments From jm@jmason.org 2004-03-29 11:26 -------
'Can someone remind me why SA doesn't just always skip scanning the first IP in
Received when the notfirsthop flag is set? Something like, skip scanning first
hop unless it is the only other hop in the message?'
That is *exactly* what it does -- and it will still produce FPs in this
situation. To recap, here's what this bug is describing
1. user authenticates with your MTA, from a dynamic IP address:
dynamic-pool.someisp.net
2. user submits a msg to an address @ your MTA: your-mta.you.net
3. your MTA scans the message, since the message is for delivery to a local user
4. the only Received hdr is one saying
Received: from dynamic-pool.someisp.net .... by your-mta.you.net
There are no other Received hdrs. By the rules of notfirsthop, we *HAVE* to use
that IP for the Dynablock lookup, as you yourself describe.
5. it hits.
(I think comment #2 is are not talking about this case. It sounds like some
REceived hdr format is not being parsed by SA -- which causes dynablock FPs.
But that is a different bug, if it is a bug -- no samples or header data was
posted, so I have no idea. *This* bug is about the SMTP AUTH thing!)
The correct response is to:
1. for the POP-before-SMTP case, allow SA to give bonus "nice" points to IPs
that have authed via POP, bug 3086. (If you're talking about POP-before-SMTP,
best to go there.)
2. match header data that indicates that the submitter used SMTP AUTH. That's
this bug. And I agree with Chris Candreva, we need more samples from the other
MTAs, and this may be a reasonable approach.
------- You are receiving this mail because: -------
You are the assignee for the bug, or are watching the assignee.