Recently noticed a huge number of messages in mail queue for a sitework domain with an email alias as the recipient; i.e. forwards to a 3rd party email address.
Looking at the message contents I see that all of the messages are SA subject line rewritten [SPAM], but this shouldn’t happen, messages above X score in sitework (3.0) are set to delete.
Obviously an email alias has no IMAP folder so I really need for the siteworx delete setting to actually delete the message and not rewrite the subject line, thus forwarding hundreds of messages with [SPAM] subject line to the 3rd party email target of the alias. Really we’re doing the spammer’s job by spamming the recipient, ridiculous.
Should note that I have SMTP level scanning enabled system wide (5.0 drop), not sure if the double scanning is causing an issue. At any rate something is broken.