Testing Zimbra for our site. So far I've found a way to do everything but one item.
We don't trust all our users to correctly identify UCE so we would like to be able to disable the Junk/Not Junk icons for some people. It looks like LDAP attributes zimbraSpamIsNotSpamAccount and zimbraSpamIsSpamAccount are global.
The problem is some people move email they don't want but isn't spam to the junk folder. Take internal marketing collateral being sent to finance. What they should do is move it to Trash but people are using the "Junk" icon to get rid of the email
So I need to SpamAssasin running but only for some users. Limiting it to admins would work although is not an optimal solution for us.
I could disable the zimbraSpam attributes and leave the spam accounts active, set up filters for email to move the mail from the authorized accounts and let the current cron jobs do the spam/ham classification. However I'm concerned removing the LDAP attributes will have a cascading effect and break the Zimba config of SpamAssassin.
Any comments would be great as this is an area I'm not up with SpamAssassin let alone how it's integrated into Zimbra.