Forwarders bypass spamassassin protection?

sehh

Well-Known Member
Feb 11, 2006
579
6
168
Europe
We noticed that forwarders bypass SpamAssassin protection against spam.

Is there a way to enable SA scanning of emails passing through a forwarder, at least for its own domain?
 

mtindor

Well-Known Member
Sep 14, 2004
1,430
92
178
inside a catfish
cPanel Access Level
Root Administrator
We noticed that forwarders bypass SpamAssassin protection against spam.

Is there a way to enable SA scanning of emails passing through a forwarder, at least for its own domain?
This has been widely discussed on these forums over time. I'm really surprised this comes as a surprise to you :)

The [typical] solution: for every forwarder that you want spam filtering, create a POP3 account as well. As long as it is a POP3 account, it will be filtered before being forwarded.

Of course, then, if you are concerned about those POP3 accounts filling up because nobody checks them since the emails are forwarded elsewhere, you'll need to create a method to remove those emails from the POP3 accounts on a regular / semi-regular basis to keep the mailboxes clean.

But yeah, a simple forwarder has no spam filtering applied. Fortunately though, RBLs and any other ACLs you have will still act upon them... just no SpamAssassin.

Mike
 

sehh

Well-Known Member
Feb 11, 2006
579
6
168
Europe
hehe yeah it took me a while to figure it out :)

creating pop3 accounts is not the best way, it would be nice if cPanel developers forced SA on forwarded emails as well.

I guess I have no other options, so I'll do just that.

Thank you for your help!
 

adsessor

Registered
Mar 22, 2010
1
0
51
There is also another area that SA and Cpanel fails to check.

Even if you create pop3 accounts SA can be bypassed.

If you forward from one account (domain forward etc. as well as email forward) to another on the same server using cpanel or between cpanel servers then Spam Assassin ignores the emails that were forwarded.

Hence mail for domain A forwarded to domain B and put into a mailbox will be ignored by SA.
Likewise email forwarded between accounts will be ignored by SA.

So spam can easily be passed and is ignored.