[Pkg-exim4-users] Does sa-exim block the use of the SPF ACL?

Steinar Bang sb at dod.no
Wed Aug 11 20:51:32 UTC 2010 

Platform:
  debian stable "lenny"
  exim4                               4.69-9
  exim4-base                          4.69-9
  exim4-config                        4.69-9
  exim4-daemon-heavy                  4.69-9
  exim4-doc-info                      4.69-1
  sa-exim                             4.2.1-11
  spamassassin                        3.2.5-2+lenny2
  libmail-spf-query-perl              1:1.999.1-3

I'm receiving spam sent to myself with myself as the forged sender.  I
tried stopping that by setting up SPF records saying that my MX is the
only legal sender of mydomain.

But email still gets through.  spamassassin/sa-exim lists SPF_SOFTFAIL
as one of the reasons in the headers below.  But I would like it to fail
hard and immediately reject something that doesn't comply with the SPF
records.   Is that possible?

I also tried activating the SPF ACL in the debian exim4 config by
putting
CHECK_RCPT_SPF = yes
into /etc/exim4/conf.d/main/00_localmacros and then running	
	dpkg-reconfigure exim4-config

But that hasn't had any effect that I can detect.

Does using sa-exim somehow block the rest of the exim4 ACL stuff?

Thanx!


- Steinar


What follows are the headers of a spam mail that got through.  Mailbox
name and domain name have been changed to protect the innocent:

Return-path: <myself at mydomain.no>
Envelope-to: myself at mydomain.no
Delivery-date: Wed, 11 Aug 2010 17:42:16 +0100
Received: from [189.12.193.134] (helo=advancedmicrosensors.com)
	by stoner.mydomain.no with smtp (Exim 4.69)
	(envelope-from <myself at mydomain.no>)
	id 1OjENa-0006Fp-3B
	for myself at mydomain.no; Wed, 11 Aug 2010 17:42:16 +0100
To: <myself at mydomain.no>
From: <myself at mydomain.no>
MIME-Version: 1.0
Importance: High
Content-Type: text/html
X-Host-Lookup-Failed: Reverse DNS lookup failed for 189.12.193.134 (failed)
X-SA-Exim-Connect-IP: 189.12.193.134
X-SA-Exim-Rcpt-To: too long (recipient list exceeded maximum allowed size of 8 bytes)
X-SA-Exim-Mail-From: myself at mydomain.no
X-Spam-Checker-Version: SpamAssassin 3.2.5 (2008-06-10) on stoner.mydomain.no
X-Spam-Level: **
X-Spam-Status: No, score=2.9 required=5.0 tests=HTML_MESSAGE,MIME_HTML_ONLY,
	MISSING_DATE,MISSING_MID,RCVD_IN_PBL,RDNS_NONE,SPF_SOFTFAIL autolearn=no
	version=3.2.5
Subject: vacancy #736
X-SA-Exim-Version: 4.2.1 (built Wed, 25 Jun 2008 17:20:07 +0000)
X-SA-Exim-Scanned: Yes (on stoner.mydomain.no)

More information about the Pkg-exim4-users mailing list