Here's my story.....just upgraded to imail 8 and it works great. Enabled DNS Blacklists, Statistical and phrase filtering. Here's where it get's dicy....

Here is how mail flows into my imail server. It first gets accepted by Sophos MailMonitor. This answers all SMTP requests and accepts mail into it's queue. Then it scans it with Sophos anti virus and does a VERY nice job at it. Once it determines it's clean, it sends it over to Imail (which is on the same server). Imail gets the message and does it's thing. Stat and phrase filtering work great, insert the X headers as such, but the issue comes with the DNS blacklists. The first line of my header is as follows:

Received: from spaceball [] by with ESMTP
(SMTPD32-8.05) id AC60600002A; Wed, 11 Feb 2004 10:38:08 -0500
Received: from ([])
by spaceball (MailMonitor for SMTP v1.2.0 ) ;

So the DNS blacklist is just looking up my localhost ( the whole time and never checks the actual sending server

So I've been trying to figure out how to strip that first line from the header either on the sophos side or on the imail side so that imail anti spam can deal with it and do the proper lookup against blacklists.

Maybe I could configure the blacklist call to skip over 127 addresses? Hmmm......another idea to try. Any help on this one? Please let me know if you need more detail.