Yes, I now, if you enforce all the RFC's you will not get much spam, but
you won't get much email either.
Maybe its just me, but I am tired of explaining to clients that the
people who write SMTP or WEB APP response type software don't seem to
care if their email is formatted correctly or not.
If its a small outfit that wrote the web app, its more likely that they
will fix it (given some prodding)
is this a FP on invalid_date?, or just crappy programming on the part of
Expedia.com?
Come on guys, at least use the same helo name as the DNS name,
received:from smtpb.expeso.com (smtp.expedia.com
and did you ever hear of Y2K? can't you afford to send out two more
digits in the year?
date:31 Jul 09 10:13 -0800
And whats with the 'feature' of FORGING THE SENDERS EMAIL ADDRESS? even
in the envelope from? can't even whitelist them, sure can't spf
whitelist them if they force the envelope from and header from.
x-envelope-from:<sen...@hotmail.com>
x-spam-status:Yes, score=6.904 tag=-999 tag2=5 kill=5 tests=[BAYES_00=0.1,
DCC_CHECK=1.5, DCC_REPUT_60_69=0.1, HTML_MESSAGE=0.001, INVALID_DATE=1.245,
MIME_HTML_ONLY=0.957, NO_REAL_NAME=1, RELAY_COUNTRY_US=0.001,
SARE_OEM_S_PRICE=1, SPF_SOFTFAIL=1] autolearn=no
received:from mx1.x.cc.ionspam.net ([10.71.0.40]) by localhost (x.cc.ionspam.net
[10.71.0.40]) (SpammerTrap(r) VPS-750, port 10024) with LMTP id dY9KthQVD-7p for
<recei...@example.com; Fri, 31 Jul 2009 13:13:32 -0400 (EDT)
received:from smtpb.expeso.com (smtp.expedia.com [216.251.115.225]) by
mx1.x.cc.ionspam.net (Postfix) with ESMTP id 634411CC107 for; Fri, 31 Jul 2009
13:13:26 -0400 (EDT)
message-id:<6uai5q$pm...@smtpb.expeso.com>
date:31 Jul 09 10:13 -0800
--
Michael Scheidell, CTO
Phone: 561-999-5000, x 1259
> *| *SECNAP Network Security Corporation
* Certified SNORT Integrator
* 2008-9 Hot Company Award Winner, World Executive Alliance
* Five-Star Partner Program 2009, VARBusiness
* Best Anti-Spam Product 2008, Network Products Guide
* King of Spam Filters, SC Magazine 2008
_________________________________________________________________________
This email has been scanned and certified safe by SpammerTrap(r).
For Information please see http://www.secnap.com/products/spammertrap/
_________________________________________________________________________