Re: spamassassin Debian package unsafe to use in stable?
On 2025-06-09 08:03:58 +0000, Andy Smith wrote:
> sa-update already picked it up:
>
> $ grep RCVD_IN_VALIDITY /var/lib/spamassassin/4.000001/updates_spamassassin_org/50_scores.cf
> score RCVD_IN_VALIDITY_CERTIFIED 0
> score RCVD_IN_VALIDITY_SAFE 0
> score RCVD_IN_VALIDITY_RPBL 0
> #score RCVD_IN_VALIDITY_SAFE_BLOCKED 0.001
> #score RCVD_IN_VALIDITY_CERTIFIED_BLOCKED 0.001
> #score RCVD_IN_VALIDITY_RPBL_BLOCKED 0.001
I also have that. Why is it ignored?
Or perhaps there is a bug in SpamAssassin, which still performs
the DNS checks even though the score is 0. FYI, I still have the
following warnings in the logs:
Jun 09 13:07:48 joooj spamd[164780]: check: dns_block_rule RCVD_IN_VALIDITY_RPBL_BLOCKED hit, creating /root/.spamassassin/dnsblock_bl.score.senderscore.com (This means DNSBL blocked you due to too many queries. Set all affected rules score to 0, or use "dns_query_restriction deny bl.score.senderscore.com" to disable queries)
Jun 09 13:07:48 joooj spamd[164780]: check: dns_block_rule RCVD_IN_VALIDITY_SAFE_BLOCKED hit, creating /root/.spamassassin/dnsblock_sa-accredit.habeas.com (This means DNSBL blocked you due to too many queries. Set all affected rules score to 0, or use "dns_query_restriction deny sa-accredit.habeas.com" to disable queries)
Jun 09 13:07:48 joooj spamd[164780]: check: dns_block_rule RCVD_IN_VALIDITY_CERTIFIED_BLOCKED hit, creating /root/.spamassassin/dnsblock_sa-trusted.bondedsender.org (This means DNSBL blocked you due to too many queries. Set all affected rules score to 0, or use "dns_query_restriction deny sa-trusted.bondedsender.org" to disable queries)
and the mail messages still have the RCVD_IN_VALIDITY_*_BLOCKED
in the headers.
--
Vincent Lefèvre <vincent@vinc17.net> - Web: <https://www.vinc17.net/>
100% accessible validated (X)HTML - Blog: <https://www.vinc17.net/blog/>
Work: CR INRIA - computer arithmetic / Pascaline project (LIP, ENS-Lyon)
Reply to: