From torsten at archesoft.de Sat Jul 12 11:01:53 2008 From: torsten at archesoft.de (Torsten Mueller) Date: Sat, 12 Jul 2008 20:01:53 +0200 Subject: [SA-exim] Help with SAEximRunCond Message-ID: <4878F191.5040207@archesoft.de> Hello, possibly someone can help me. Currently i run exim 4.69 with sa 4.2.1 with SAEximRunCond: ${if and {{!def:authenticated_id} {def:sender_host_address} {!eq {$sender_host_address}{127.0.0.1}} {!eq {$h_X-SA-Do-Not-Run:}{Yes}} } {1}{0}} To build a spamtrap i would like to exclude some E-mail addresses. As an example E-Mail i want to exclude spamtrap at archesoft.de I already tried some things, but it didn't work yet. Is there a working example around, that shows me, how i could do that ? Thanks Torsten From marc at merlins.org Sat Jul 12 16:35:14 2008 From: marc at merlins.org (Marc MERLIN) Date: Sat, 12 Jul 2008 16:35:14 -0700 Subject: [SA-exim] Help with SAEximRunCond In-Reply-To: <4878F191.5040207@archesoft.de> References: <4878F191.5040207@archesoft.de> Message-ID: <20080712233514.GA28409@merlins.org> On Sat, Jul 12, 2008 at 08:01:53PM +0200, Torsten Mueller wrote: > Hello, > > possibly someone can help me. > Currently i run exim 4.69 with sa 4.2.1 with > > SAEximRunCond: ${if and {{!def:authenticated_id} > {def:sender_host_address} {!eq {$sender_host_address}{127.0.0.1}} {!eq > {$h_X-SA-Do-Not-Run:}{Yes}} } {1}{0}} > > To build a spamtrap i would like to exclude some E-mail addresses. > As an example E-Mail i want to exclude spamtrap at archesoft.de > > I already tried some things, but it didn't work yet. > > Is there a working example around, that shows me, how i could > do that ? It's not super clear what you're trying to do. Are you trying not to run sa-exim the envelope from is spamtrap at archesoft.de? If so, ok, although I don't understand why. Usually people let sa-exim run and just disable the spam check by lowering the spam score a lot in the spamassassin config, but if this is not good for you please describe exactly what you tried so that it's easier to help. Thanks, Marc -- "A mouse is a device used to point at the xterm you want to type in" - A.S.R. Microsoft is to operating systems & security .... .... what McDonalds is to gourmet cooking Home page: http://marc.merlins.org/ From torsten at archesoft.de Sat Jul 12 19:19:16 2008 From: torsten at archesoft.de (Torsten Mueller) Date: Sun, 13 Jul 2008 04:19:16 +0200 Subject: [SA-exim] Help with SAEximRunCond In-Reply-To: <20080712233514.GA28409@merlins.org> References: <4878F191.5040207@archesoft.de> <20080712233514.GA28409@merlins.org> Message-ID: <48796624.8020504@archesoft.de> Marc MERLIN schrieb: > On Sat, Jul 12, 2008 at 08:01:53PM +0200, Torsten Mueller wrote: >> Hello, >> >> possibly someone can help me. >> Currently i run exim 4.69 with sa 4.2.1 with >> >> SAEximRunCond: ${if and {{!def:authenticated_id} >> {def:sender_host_address} {!eq {$sender_host_address}{127.0.0.1}} {!eq >> {$h_X-SA-Do-Not-Run:}{Yes}} } {1}{0}} >> >> To build a spamtrap i would like to exclude some E-mail addresses. >> As an example E-Mail i want to exclude spamtrap at archesoft.de >> >> I already tried some things, but it didn't work yet. >> >> Is there a working example around, that shows me, how i could >> do that ? > > It's not super clear what you're trying to do. > Are you trying not to run sa-exim the envelope from is > spamtrap at archesoft.de? No, i try to not run sa-exim, if the local receiving E-Mail would be spamtrap at archesoft.de. So , if $local_part eq spamtrap and $local_receiving_domain eq archesoft.de , then do not run sa-exim. I hope, i described it better now ;-) > If so, ok, although I don't understand why. > > Usually people let sa-exim run and just disable the spam check by lowering > the spam score a lot in the spamassassin config, but if this is not good for > you please describe exactly what you tried so that it's easier to help. Possibly i should check the spamassassin config and exclude checking there ? Thanks Torsten From ediaz at ultreia.es Sun Jul 13 02:53:48 2008 From: ediaz at ultreia.es (Eduardo Diaz Comellas) Date: Sun, 13 Jul 2008 11:53:48 +0200 Subject: [SA-exim] Help with SAEximRunCond In-Reply-To: <48796624.8020504@archesoft.de> References: <4878F191.5040207@archesoft.de> <20080712233514.GA28409@merlins.org> <48796624.8020504@archesoft.de> Message-ID: <4879D0AC.10708@ultreia.es> Torsten Mueller escribi?: > Marc MERLIN schrieb: > >> On Sat, Jul 12, 2008 at 08:01:53PM +0200, Torsten Mueller wrote: >> >>> Hello, >>> >>> possibly someone can help me. >>> Currently i run exim 4.69 with sa 4.2.1 with >>> >>> SAEximRunCond: ${if and {{!def:authenticated_id} >>> {def:sender_host_address} {!eq {$sender_host_address}{127.0.0.1}} {!eq >>> {$h_X-SA-Do-Not-Run:}{Yes}} } {1}{0}} >>> >>> To build a spamtrap i would like to exclude some E-mail addresses. >>> As an example E-Mail i want to exclude spamtrap at archesoft.de >>> >>> I already tried some things, but it didn't work yet. >>> >>> Is there a working example around, that shows me, how i could >>> do that ? >>> >> It's not super clear what you're trying to do. >> Are you trying not to run sa-exim the envelope from is >> spamtrap at archesoft.de? >> > > No, i try to not run sa-exim, if the local receiving > E-Mail would be spamtrap at archesoft.de. > > So , if $local_part eq spamtrap and $local_receiving_domain eq > archesoft.de , then do not run sa-exim. > > I hope, i described it better now ;-) > > The best implementation I can think of is adding the X-SA-Do-Not-Run header in the ACL section of exim. It is easy to maintain and to understand, it can be split into multiple files for different conditions, etc. Regards >> If so, ok, although I don't understand why. >> >> Usually people let sa-exim run and just disable the spam check by lowering >> the spam score a lot in the spamassassin config, but if this is not good for >> you please describe exactly what you tried so that it's easier to help. >> > > Possibly i should check the spamassassin config and exclude checking > there ? > > Thanks > Torsten > > _______________________________________________ > SA-Exim mailing list > SA-Exim at lists.merlins.org > http://lists.merlins.org/lists/listinfo/sa-exim > From holmgren at lysator.liu.se Sun Jul 13 03:16:23 2008 From: holmgren at lysator.liu.se (Magnus Holmgren) Date: Sun, 13 Jul 2008 12:16:23 +0200 Subject: [SA-exim] Help with SAEximRunCond In-Reply-To: <4879D0AC.10708@ultreia.es> References: <4878F191.5040207@archesoft.de> <48796624.8020504@archesoft.de> <4879D0AC.10708@ultreia.es> Message-ID: <200807131216.37125@proffe.kibibyte.se> On s?ndagen den 13 juli 2008, Eduardo Diaz Comellas wrote: > Torsten Mueller escribi?: > > No, i try to not run sa-exim, if the local receiving > > E-Mail would be spamtrap at archesoft.de. > > > > So , if $local_part eq spamtrap and $local_receiving_domain eq > > archesoft.de , then do not run sa-exim. > > > > I hope, i described it better now ;-) > > The best implementation I can think of is adding the X-SA-Do-Not-Run > header in the ACL section of exim. It is easy to maintain and to > understand, it can be split into multiple files for different > conditions, etc. I would recommend using ACL variables instead of header fields, which cannot, since there is no remove_header ACL modifier and the system filter isn't applied until delivery, easily be cleared out first to prevent forgery. -- Magnus Holmgren holmgren at lysator.liu.se (No Cc of list mail needed, thanks) -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 197 bytes Desc: This is a digitally signed message part. Url : http://lists.merlins.org/archives/sa-exim/attachments/20080713/054e234f/attachment.pgp From torsten at archesoft.de Sun Jul 13 05:35:07 2008 From: torsten at archesoft.de (Torsten Mueller) Date: Sun, 13 Jul 2008 14:35:07 +0200 Subject: [SA-exim] Help with SAEximRunCond In-Reply-To: <48796624.8020504@archesoft.de> References: <4878F191.5040207@archesoft.de> <20080712233514.GA28409@merlins.org> <48796624.8020504@archesoft.de> Message-ID: <4879F67B.9050301@archesoft.de> Torsten Mueller schrieb: > No, i try to not run sa-exim, if the local receiving > E-Mail would be spamtrap at archesoft.de. > > So , if $local_part eq spamtrap and $local_receiving_domain eq > archesoft.de , then do not run sa-exim. > > I hope, i described it better now ;-) I think i am a step closer: SAEximRunCond: ${if and { {!eq {$received_for}{spamtrap at archesoft.de}} {!def:authenticated_id} {def:sender_host_address} {!eq {$sender_host_address}{127.0.0.1}} {!eq {$h_X-SA-Do-Not-Run:}{Yes}} } {1}{0}} The received_for variable should work, if there's only one recipient. Torsten From marc at merlins.org Sun Jul 13 08:09:27 2008 From: marc at merlins.org (Marc MERLIN) Date: Sun, 13 Jul 2008 08:09:27 -0700 Subject: [SA-exim] Help with SAEximRunCond In-Reply-To: <4879F67B.9050301@archesoft.de> References: <4878F191.5040207@archesoft.de> <20080712233514.GA28409@merlins.org> <48796624.8020504@archesoft.de> <4879F67B.9050301@archesoft.de> Message-ID: <20080713150927.GA23831@merlins.org> On Sun, Jul 13, 2008 at 02:35:07PM +0200, Torsten Mueller wrote: > Torsten Mueller schrieb: > >No, i try to not run sa-exim, if the local receiving > >E-Mail would be spamtrap at archesoft.de. > > > >So , if $local_part eq spamtrap and $local_receiving_domain eq > >archesoft.de , then do not run sa-exim. > > > >I hope, i described it better now ;-) > > I think i am a step closer: > > SAEximRunCond: ${if and { {!eq {$received_for}{spamtrap at archesoft.de}} > {!def:authenticated_id} {def:sender_host_address} {!eq > {$sender_host_address}{127.0.0.1}} {!eq {$h_X-SA-Do-Not-Run:}{Yes}} } > {1}{0}} > > The received_for variable should work, if there's only one recipient. Aaah, you were looking at 'for', not 'from'. I honestly don't remember so you'll have to try, but I'm not sure you can look for $received_for at DATA time since you may have more than one recipient by Email. You are right that if there is only one recipient, it ought to work, but I'm not certain it does. If that does not work, SA-Exim creates a X-SA-Exim-Rcpt-To header which you can then check in SpamAssassin to exclude your user. Marc -- "A mouse is a device used to point at the xterm you want to type in" - A.S.R. Microsoft is to operating systems & security .... .... what McDonalds is to gourmet cooking Home page: http://marc.merlins.org/ From torsten at archesoft.de Mon Jul 14 15:17:33 2008 From: torsten at archesoft.de (Torsten Mueller) Date: Tue, 15 Jul 2008 00:17:33 +0200 Subject: [SA-exim] Help with SAEximRunCond In-Reply-To: <20080713150927.GA23831@merlins.org> References: <4878F191.5040207@archesoft.de> <20080712233514.GA28409@merlins.org> <48796624.8020504@archesoft.de> <4879F67B.9050301@archesoft.de> <20080713150927.GA23831@merlins.org> Message-ID: <487BD07D.3070303@archesoft.de> Marc MERLIN schrieb: >> SAEximRunCond: ${if and { {!eq {$received_for}{spamtrap at archesoft.de}} >> {!def:authenticated_id} {def:sender_host_address} {!eq >> {$sender_host_address}{127.0.0.1}} {!eq {$h_X-SA-Do-Not-Run:}{Yes}} } >> {1}{0}} >> >> The received_for variable should work, if there's only one recipient. > > Aaah, you were looking at 'for', not 'from'. > I honestly don't remember so you'll have to try, but I'm not sure you can > look for $received_for at DATA time since you may have more than one > recipient by Email. > You are right that if there is only one recipient, it ought to work, but I'm > not certain it does. It seems to work this way with one recipient. Now i 'only' must configure my other exim ACLs to not refuse such mail for other reasons. Thanks so far, Greetings Torsten