On 10/5/11 5:01 PM, Julian Yap wrote:
I've noticed some trojans with addresses from usps.com
<http://usps.com> slip through.
Does anyone blacklist based on SPF?
I took a look at the source for SpamAssassin/Plugin/SPF.pm but it only
has evaluation rules for whitelisting:
$self->register_eval_rule ("check_for_spf_whitelist_from");
$self->register_eval_rule ("check_for_def_spf_whitelist_from");
Thanks,
Julian
I tried blacklist_from *@usps.com with an whitelist_from. (would even
themselves out...)
problem is.. if I send to xmail, and xmail fwds (incorrectly), OR, dns
doesn't answer in time, you lose email.
best to write a metarule. put your def_ whitelist from (7 points), and
set up some metarules.
--
Michael Scheidell, CTO
o: 561-999-5000
d: 561-948-2259
>*| *SECNAP Network Security Corporation
* Best Mobile Solutions Product of 2011
* Best Intrusion Prevention Product
* Hot Company Finalist 2011
* Best Email Security Product
* Certified SNORT Integrator
______________________________________________________________________
This email has been scanned and certified safe by SpammerTrap(r).
For Information please see http://www.spammertrap.com/
______________________________________________________________________
