Hello all, We are running ASSP 1.8.5.1(1.0.04) and we are checking a problem with bounces coming from the internet not being checked for the "FBs Message-ID Tag Validation".
We have DoMSGIDsig AND DoBackSctr set to "block". According to the bounces we recieve from the internet, they are checked against DNS Backscatter detection OK, but i dont see anything about checking for a valid FBMTV signature. Heres a small log portion of a sample unsigned bounce getting into the final user's mailbox: Jan-17-11 12:33:08 m-12952-29414 62.113.86.198 <> to: myuser@mydomain [scoring:10] -- Suspicious Country RU - ZENON N.S.P. -- [Undeliverable mail: ]; Jan-17-11 12:33:09 m-12952-29414 [Backscatter] 62.113.86.198 <> to: myuser@mydomain Backscatter detection OK [cache]; Jan-17-11 12:33:09 m-12952-29414 62.113.86.198 <> to: myuser@mydomain [scoring:40] Bayesian Check - Prob: 0.9204 => spam; Jan-17-11 12:33:09 m-12952-29414 [MessageOK] 62.113.86.198 <> to: myuser@mydomain -- Message OK -- [Undeliverable mail: ]; ASSP with DoMSGIDsig set to "block" is supposed to BLOCK all incoming messages from null senders that don't have our signature on the header, but it seems this is not happening for some reason, according to these logs it doesn't even go through the process of looking for a valid signature on these bounces. Only the DNS based backscatter validation is made. Maybe its another configuration option that we are missing? Thank you, ------------------------------------------------------------------------------ Protect Your Site and Customers from Malware Attacks Learn about various malware tactics and how to avoid them. Understand malware threats, the impact they can have on your business, and how you can protect your company and customers by using code signing. http://p.sf.net/sfu/oracle-sfdevnl _______________________________________________ Assp-user mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/assp-user
