Hi, This morning I had to file to false positive reports because emails from Wanadoo.FR and UOL.COM.BR were triggering "SNIFFER-IP".
I don't know if this is a coincidence or if this is a worrisome new trend caused by someone "new" in this field how is now coding Sniffer rules without even a basic understanding the major players in this field. Needless to say, both Wanadoo and UOL are legitimate providers, in fact, they are some of the world's largest providers. They certainly are THE dominant providers in their respective (European / South American) markets. (For anyone subscribing to American Isolationism, it would be equivalent to Sniffer blacklisting the smtp relay servers of Google, Yahoo, AOL, etc.) Because of their market dominance, these relay servers are more likely to be abused by their customers - but that doesn't mean they can be black-listed. After all, they are THE major source of legitimate emails for their respective markets. Somebody's got to apply some common sense before coding these kind of rules. 20061228150347 16 0 Match 799799 63 1 48 75 20061228150347 16 0 Final 799799 63 0 1744 75 20061228110558 15 16 Match 1235160 63 1 46 73 20061228110558 15 16 Final 1235160 63 0 2980 73 Best Regards Andy Schmidt Phone: +1 201 934-3414 x20 (Business) Fax: +1 201 934-9206 ############################################################# This message is sent to you because you are subscribed to the mailing list <sniffer@sortmonster.com>. To unsubscribe, E-mail to: <[EMAIL PROTECTED]> To switch to the DIGEST mode, E-mail to <[EMAIL PROTECTED]> To switch to the INDEX mode, E-mail to <[EMAIL PROTECTED]> Send administrative queries to <[EMAIL PROTECTED]>