SpamAssassin scanning even though sender is on only-verify-recipient list

Operating System & Version
CentOS 7
cPanel & WHM Version
98.0.10

gramzon

Active Member
Dec 4, 2017
30
5
8
Croatia
cPanel Access Level
Root Administrator
I have some servers behind dyndns (IP changes every 24 hours) and I need them to be able to send mail to me.
I added the dyndns domains to the "Only-verify-recipient" (/etc/trustedmailhosts) list under Exim configuration manager, but SA is still scanning these mails and marking them as spam.
How can I get SA to ignore these messages, and why isn't it already doing it since the description of the "Only-verify-recipient" list is "Hosts or IP addresses that should be exempt from all spam checks at SMTP time, except recipient verification. "

Strangely enough, after restarting exim the e-mails from the dnynds are not being scanned. My guess is that the IPs for domains from /etc/trustedmailhosts are cached somewhere and when an IP for one of these domains changes exim does not pick it up. So maybe the solution would be a script that detects change of IP for domains in /etc/trustedmailhosts and simply restarts exim. I may be wrong on this one though.
 
Last edited:

gramzon

Active Member
Dec 4, 2017
30
5
8
Croatia
cPanel Access Level
Root Administrator
It would be easy for a spammer now to impersonate this domain, since only the header of the e-mail is checked (using whitelist_from_rcvd is also not viable since I can not set up a rDNS for my dynamic IP address)