Build 7565 - Since update SPAMs are forwarded
Problem reported by Sébastien Riccio - 9/17/2020 at 9:05 PM
Submitted
Hello SmarterTools,

Since we installed latest build, SmarterMail autoforwarding is forwarding all the SPAM it detects, to the user configured forwarding address.

Before the update it wasn't forwarding e-mails detected as SPAM, according to our settings.

This is quite a big problem because our server will quickly be flagged as a SPAM source...

Regards

Sébastien Riccio
System & Network Admin

3 Replies

Reply to Thread
0
Sébastien Riccio Replied
Damn, it's even worse than that. Since the update, mails relayed by our incoming filtering gateways and tagged as SPAM aren't considered as SPAM by SmarterMail anymore with this message in the log:

[2020.09.18] 06:13:58.262 [33424891] Spam Checks skipped: IP Spam Bypassed

and this in the mail headers

X-SmarterMail-TotalSpamWeight: 0 (IP Spam Bypassed)

At no time we configured our gateway IP addresses to be skipped for SPAM checks. We use custom spam checks on SmarterMail to classify the mails based on headers added by our incoming gateway.
Now every SPAM is getting through.

We have SMTP bypass (to disable IDS for our mail filters, but SMTP Spam Bypass is _NOT_ enabled. Why after the update it suddently skips spam checks ?


EDIT:
From changelog

Fixed: Spam checks are running against incoming gateway rather than the sender's IP when gateway is added to IP bypass list.

I don't understand this change, what does mean "running spam checks against incoming gateway"?

1) we have front end filters that add headers to the mail to classify then
2) we disable all built-in spam checks in SmarterMail and add custom spam checks based on the content of these headers
3) we add our frontend filters IP address to the SMTP Bypass list to avoid the gateways to trigger IDS
4) we DO NOT enable Spam check bypass for the gateway IP (or it would disable the custom checks)

It worked perfectly like this. The new build broke this as it now skip checks for a mysterious reason...

We have to rollback before the inboxes starts to be filled with crappy mails and we're good for a "we received a lot of spam" support day.

Sorry for the rant, but honestly most of the time we update to have annoying bugs fixed for our customers, it adds an even worse unrelated issue.
Sébastien Riccio
System & Network Admin

0
Sébastien Riccio Replied
Does anyone knows what is the difference between this Spam bypass setting:


And this one:


I'm trying to figure out if there is still a possibility that our config is wrong (even that with previous builds the issue wasn't present)


Sébastien Riccio
System & Network Admin

0
Sébastien Riccio Replied
Little update:

After trying do understand why SM was skipping spam checks for our incoming filter gateways, I noticed the gateway IP was in a range we declared in the first screen of my previous post.

So it is a configuration error.

But that also means the rules we have set there never worked until yesterday's update. 
ST, Is this a fixed bug that is not listed in the changelog ?
Sébastien Riccio
System & Network Admin

Reply to Thread