Yes, it would be nice if you could add more that just one alternate domain per line in the spamdomains.txt file, like:
@msn.com .msn.com .hotmail.com .ebay.com Maybe in a future release (hint, hint)... ;-) Bill ----- Original Message ----- From: "Jason" <[EMAIL PROTECTED]> To: <[EMAIL PROTECTED]> Sent: Wednesday, December 03, 2003 6:44 PM Subject: RE: [Declude.JunkMail] SpamDomains > Say for example I have 10,000 people using MSN.com addresses to spam me > with. > > I add the spamdomains test and enter in @msn.com into it. > > Now it does well to stop the spammers, but now I am falsely tagging mail > from ebay.com [EMAIL PROTECTED] making a bid inquiry. > > If we could have a spamdomains RDNS whitelist, then anything with a > .ebay.com address is whitelisted, or whatever we put in the list. > > I know we can whitelist in the main .cfg file, but I'm not sure I would > want to whitelist ebay from every test, just whitelist from the > spamdomains test. > > > Jason > > > -----Original Message----- > From: [EMAIL PROTECTED] > [mailto:[EMAIL PROTECTED] On Behalf Of Bill Landry > Sent: Wednesday, December 03, 2003 8:20 PM > To: [EMAIL PROTECTED] > Subject: Re: [Declude.JunkMail] SpamDomains > > > Everything is already excluded from the spamdomains test except that > which you specifically included. So I'm not sure I understand what > you're asking for here? > > Bill > ----- Original Message ----- > From: "Jason Newland" <[EMAIL PROTECTED]> > To: <[EMAIL PROTECTED]> > Sent: Wednesday, December 03, 2003 5:29 PM > Subject: Re: [Declude.JunkMail] SpamDomains > > > > I don't know how hard it would be, but what about just adding in a > > "pre" > filter in the spamdomains test that will bypass the test. Like: > > > > > > Spamdomains.txt: > > > > [RDNS excluded from check] > > > > ebay.com > > greetingcardvendor.com > > > > > > [includes] > > .yahoo.com > > @msn.com > > etc, etc > > > > > > This would also allow us to build our list of acceptable excluded > addresses together, further improving the tests accuracy. > > > > > > Jason > > > > > > > > ---------- Original Message ---------------------------------- > > From: Matthew Bramble <[EMAIL PROTECTED]> > > Reply-To: [EMAIL PROTECTED] > > Date: Wed, 03 Dec 2003 19:38:18 -0500 > > > > >Alejandro, > > > > > > From the Declude JunkMail manual page: > > > > > > "This test will catch E-mail that is not coming from a mailserver > > > that it should be coming from. This test will only work if you > set > > > up a file listing domains that you wish to be included in this > test. > > > Specifically, it will check the return address of the E-mail, and > > > then check to see if the reverse DNS entry of the IP that the > E-mail > > > was sent from contains the domain name. If not, the E-mail fails > the > > > test. For example, if "hotmail.com" is listed in the > > > \IMail\Declude\spamdomains.txt file, then an E-mail coming from > > > "law2.hotmail.com" would not fail the test, but an E-mail from > > > "mail.example.ru" would fail the test." > > > > > >You can search the archives for some discussions of this. It's > > >hardly foolproof, things like greeting cards and send-a-link sites > > >will often fail the test because they send E-mail with a MAILFROM > > >address of the person sending the note and not the service sending > > >the note. I suggest that you always use the @ symbol in the first > > >column, and you should set up two different files and score them > > >differently. One should be for ISP's and E-mail providers such as > > >AOL, HotMail, Yahoo, etc., and the other should be for businesses > > >that are often spoofed such as Microsoft, PayPal, Symantec/Norton, > > >McAfee. Be careful not to include companies that may use thrid-party > > > >mass mailers for newsletters. The second type of test can be scored > > >higher because you are less likely to be getting greeting cards from > > >people with real addresses at these companies than you are from > > >places like AOL. > > > > > >You might also be thinking of including your own domains in this > > >test, but that again should be in a totally different file, and > > >scored very low because even if you are using WHITELIST AUTH > > >functionality, you will most definitely get users sending E-mail with > > > >your hosted addresses configured in their E-mail program but are > > >using someone else's mail server, or without WHITELIST AUTH, they > > >will fail when using your own mail server. > > > > > >Matt > > > > > --- > > [This E-mail was scanned for viruses by Declude Virus > (http://www.declude.com)] > > > > --- > > This E-mail came from the Declude.JunkMail mailing list. To > > unsubscribe, just send an E-mail to [EMAIL PROTECTED], and type > > "unsubscribe Declude.JunkMail". The archives can be found at > > http://www.mail-archive.com. > > > > --- > [This E-mail was scanned for viruses by Declude Virus > (http://www.declude.com)] > > --- > This E-mail came from the Declude.JunkMail mailing list. To > unsubscribe, just send an E-mail to [EMAIL PROTECTED], and type > "unsubscribe Declude.JunkMail". The archives can be found at > http://www.mail-archive.com. > > --- > [This E-mail was scanned for viruses by Declude Virus (http://www.declude.com)] > > --- > This E-mail came from the Declude.JunkMail mailing list. To > unsubscribe, just send an E-mail to [EMAIL PROTECTED], and > type "unsubscribe Declude.JunkMail". The archives can be found > at http://www.mail-archive.com. > --- [This E-mail was scanned for viruses by Declude Virus (http://www.declude.com)] --- This E-mail came from the Declude.JunkMail mailing list. To unsubscribe, just send an E-mail to [EMAIL PROTECTED], and type "unsubscribe Declude.JunkMail". The archives can be found at http://www.mail-archive.com.