Banned Content Bypass for Clients not fully working here.

Mark Martinec Mark.Martinec+amavis at ijs.si
Mon Jan 16 17:55:45 CET 2012


Marko,

> i try to bypass the banned content check for selected clients.
> but something dont work. banned content still gets blocked from the 
> test client.
> 
> in postfix main.cf i did:
> smtpd_client_restrictions =
>          ......
>          check_client_access     hash:/etc/postfix/amavis_bypass
> 
> contents of /etc/postfix/amavis_bypass:
> 
> 85.15x.xxx.51 FILTER smtp-amavis:[127.0.0.1]:10029
> 85.15x.xxx.83 FILTER smtp-amavis:[127.0.0.1]:10029
> 85.15x.xxx.35 FILTER smtp-amavis:[127.0.0.1]:10029
> 85.15x.xxx.99 FILTER smtp-amavis:[127.0.0.1]:10029
> 
> in amavis.conf i set:
> 
> $inet_socket_port = [10024, 9998, 10029]
> $interface_policy{'9998'} = 'AM.PDP-INET';
> $interface_policy{'10029'} = 'BYPASS';
> 
> $policy_bank{'BYPASS'} = {
>     bypass_spam_checks_maps   => [1],  # don't spam-check this mail
>     bypass_banned_checks_maps => [1],  # don't banned-check this mail
>     bypass_header_checks_maps => [1],  # don't header-check this mail
> };
> 
> But when the Client sends a mail with an .exe i get blocked message 
> mails

Looks ok at the first glance, but you are not showing if you have
any other settings of a Postfix content_filter, e.g. a global setting
or a per-service option.

Turn up $log_level, send a test message from one of these networks,
and verify:
- that amavisd really accepted such message on a port 10029
- that the 'BYPASS' policy bank really gets loaded

Mark


More information about the amavis-users mailing list