X-Git-Url: https://git.hcoop.net/hcoop/debian/exim4.git/blobdiff_plain/d1e9e98adb057fac01d3b4db6c75347e05e88263..01e60269815612fced0df2994079cb2081f8ff0b:/debian/README.Debian.xml
diff --git a/debian/README.Debian.xml b/debian/README.Debian.xml
index 8fa7422..77b4a37 100644
--- a/debian/README.Debian.xml
+++ b/debian/README.Debian.xml
@@ -35,14 +35,6 @@
lead you to the page.
-
-
- The Debian Exim 4 packages have their own
-
- Home Page
- which also links to a User FAQ.
-
-
The very extensive Upstream documentation is shipped
@@ -120,13 +112,6 @@
extremely flexible, allowing you to get exactly the amount of
control you need for the job at hand.
-
- The development web page contains a lot of
- useful links and other information. The subversion repository
- of the Debian package is available for public read-only access
- and is linked from the development web page.
-
Feature Sets in the daemon packages
To use Exim 4, you need at least the following packages:
@@ -1731,6 +1716,46 @@ commands rmail rnews rsmtp
+ Notes on running SpamAssassin at SMTP time
+
+ Exim can run
+
+ SpamAssassin while receiving a message by SMTP which
+ allows one to avoid acceptance of spam messages. The Debian
+ configuration contains some example code for running SpamAssassin,
+ but like all filtering this needs to be handled carefully.
+
+
+ SpamAssassin's default report should not be used in a add_header
+ statement since it contains empty lines. (This triggers e.g.
+ Amavis' warning "BAD HEADER SECTION, Improper folded header field
+ made up entirely of whitespace".) This is a safe, terse alternative:
+
+ clear_report_template
+ report (_SCORE_ / _REQD_ requ) _TESTSSCORES(,)_ autolearn=_AUTOLEARN_
+
+
+
+ Rejecting spam messages: Do not reject spam-messages received on
+ (non-spam) mailing lists, this can/will cause auto-unsubscription.
+ This also applies to messages received via forwarding services
+ (e.g. @debian.org addresses). If theses messages are rejected the
+ forwarding services will need to send a bounce address to the
+ spammer and will probably disable the forwarding if it happens all
+ the time. You will need to have some kind of whitelist to exclude
+ these hosts.
+
+
+ Security considerations: By default spamd
+ runs as root and changes uid/gid to the requested user to run
+ SpamAssassin. The example uses SpamAssassin default non-privileged
+ user (nobody) which prevents use of Bayesian filtering since this
+ requires persistent storage. You might want to setup a dedicated
+ user for exim spam scanning and use that one, either for a separate
+ SpamAssassin user profile or to run SpamAssassin as non-privileged
+ user.
+
+