> Now, if you want to use SBL-XBL, that's fine (I do). "Normal" users on > dynamic addresses don't show up on those lists.
I disagree. True for SBL, but not for XBL. Consider that there are MANY situations where a small-to-large office will all share an IP to the outside world. Maybe we are talking about 10 computers... maybe 100... maybe 1000+. All it takes is a single computer getting a zombie (and this wouldn't be all that rare... even if the I.T. guy was really good as his/her job!). Once one such computer gets a zombie... then that IP can easily get listed on XBL. Another common scenario is that the end user's computer's IP often gets placed somewhere in the header by the SMTP server that they use for sending their legit e-mail. I think that this happens more often than not. So here you have a fairly common situation where MANY outgoing non spam legit e-mails have an XBL-listed IP somewhere in the header, but with the actual sending mail server is NOT listed on any spam blacklists because it simply doesn't send spam. Suppose also that this expoited computer is not yet spotted and persists for weeks. In such a scenario, if ALL spam filters ONLY checked the actual sending server's IP, then ALL of the spam sent from this exploited computer would easily be caught... and ALL of the legit messages sent by that legit e-mail server from users in this office would NOT be mistakenly blocked... ...a perfect world... ...but checking against OTHER IP addresses in the header messes this all up. Rob McEwen PowerView Systems [EMAIL PROTECTED]
