Bug 5305 - implement msa_networks for detecting MSAs and extending trust accordingly
Summary: implement msa_networks for detecting MSAs and extending trust accordingly
Status: RESOLVED FIXED
Alias: None
Product: Spamassassin
Classification: Unclassified
Component: Libraries (show other bugs)
Version: SVN Trunk (Latest Devel Version)
Hardware: Other other
: P5 normal
Target Milestone: 3.2.0
Assignee: Daryl C. W. O'Shea
URL:
Whiteboard:
Keywords:
Depends on:
Blocks:
 
Reported: 2007-01-24 14:16 UTC by Daryl C. W. O'Shea
Modified: 2007-01-24 15:26 UTC (History)
1 user (show)


Attachment Type Modified Status Actions Submitter/CLA Status
bare bones 3.1 implementation (linked to in comment #0) patch None Daryl C. W. O'Shea [HasCLA]
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description Daryl C. W. O'Shea 2007-01-24 14:16:31 UTC 
I've held off adding this for a long time as I didn't want to complicate the
whole trust config more than it is already perceived to be.  I'm now totally
convinced this is required and actually makes things easier for a lot of setups.

As Mark Martinec wrote to me back in the summer, an MSA should be allowed to do
what it is designed to; take care of determining trust.

If SA can determine that a relay is an MSA it doesn't need to worry about any
other relays after that since it's the MSAs job to ensure its client is trusted.
 So if we trust the MSA, we can trust its clients.

This allows users who do not know the complete details of a mail network, but do
know which machines are the MSAs, to reliably configure their setup to deal with
mail from other users of the same network (who's client machines are probably
listed in dynablocks).

Of course, we'd get similar functionality if the MSAs all supported some sort of
auth tokens, but many don't.

I know there's quite a few gmx.net and Earthlink users using the 3.1
msa_networks patch [1], it's fixed their problems with no complaints that I've
heard of.

[1] http://people.apache.org/~dos/sa-patches/msa_networks.3.1
Comment 1 Daryl C. W. O'Shea 2007-01-24 14:18:14 UTC 
Created attachment 3838 [details]
bare bones 3.1 implementation (linked to in comment #0)
Comment 2 Daryl C. W. O'Shea 2007-01-24 15:26:06 UTC 
Sending        lib/Mail/SpamAssassin/Conf/Parser.pm
Sending        lib/Mail/SpamAssassin/Conf.pm
Sending        lib/Mail/SpamAssassin/Message/Metadata/Received.pm
Sending        t/rcvd_parser.t
Sending        t/trust_path.t
Transmitting file data .....
Committed revision 499613.