SA Bugzilla – Bug 3086
ACCESSDB for "nice" IPs
Last modified: 2019-07-08 10:13:36 UTC
I run an ISP, and a number of customers use Verizon DSL (and other dynamic IP). I would just as soon not list whole blocks of Verizon IP's as trusted (to avoid DYNABLOCK, et al.). We have been successfully using a handy bit of perl called pop-before-smtp (http://popbsmtp.sf.net/) to maintain a dynamic list of valid IP for postfix. pop-before-smtp tails the log file written by the pop and imap daemons and maintains a db file of IP addresses from which a valid authentication has been received in the last 2 hours. This is used by postfix as an alternative means of smtp authentication (hence the name). Would anyone else find it useful to have Mail::SpamAssassin::NetSet->contains_ip() optionally look in a db as well as the static list? Have I found the appropriate method in which to add such a lookup?
I'm not sure -- actually I think such data would be better as a general "bonus" rule anyway, since you know those IPs are those of your subscribers. not even just a dynablock exclusion, a more general spam exclusion. Note the ACCESSDB rule would do this just fine I think.
oh -- just noticed -- vineyard.net! thanks for all the spam! ;) Anyway, looking at this, it looks like the current ACCESSDB rule doesn't allow negative "nice" scores, just positive, punitive scores. so a bit of a patch to EvalTests would be required to fix this.
it would be relatively easy to pass the code a variable and have it return true if OK/RELAY and false otherwise.
move bug to Future milestone (previously set to Future -- I hope)
http://wiki.apache.org/spamassassin/POPAuthPlugin
Closing ancient stale bug. Should not be needed, doesn't everyone use authentication these days..