I don't think it is wise to have them listed in either Bonded Sender nor SBL. Even with that said, those tests cancel each other out on my system, though I never planned on such a thing happening for obvious reasons.
If places like Bonded Sender start allowing bulk-mail senders that serve very small customers that bring their own lists, then I will stop using them as a negative weight test. At the same time, SBL needs to take a look at their charter and take Topica out of their list because Topica itself isn't a spammer, they're just a company offering service to a market that is impossible to police.
JMHO.
Matt
Matthew Bramble wrote:
What to do? This looks very suspicious and it causes me grave concern about the quality of Bonded Sender. Check out the following headers:
X-MailPure: ============================================================
X-MailPure: BONDEDSENDER: Listed in query.bondedsender.org
X-MailPure: FIVETEN-SPAM: Listed in blackholes.five-ten-sg.com
X-MailPure: SBL: Listed in sbl.spamhaus.org
X-MailPure: MAILPOLICE-BULK: Listed in bulk.rhs.mailpolice.com
X-MailPure: IPNOTINMX: IP is not listed in MX or A records.
X-MailPure: NOLEGITCONTENT: No legitimate content detected.
X-MailPure: SNIFFER-GRAY: Listed in the Gray category.
X-MailPure: KAMI-REMOTEIP: Message failed KAMI-REMOTEIP test (line 124, weight 0).
X-MailPure: RECIPIENTS: <removed>
X-MailPure: ============================================================
X-MailPure: Spam Score: 20
X-MailPure: Scan Time: 15:26:33 on 12/11/2003
X-MailPure: Spool File: Dd2d200ad022e006c.SMD
X-MailPure: SMTP Sender: [EMAIL PROTECTED]
X-MailPure: Received From: out003.toptx.com [38.113.200.23]
X-MailPure: ============================================================
They were recently listed in SBL with the following record:
http://www.spamhaus.org/sbl/sbl.lasso?query=SBL12236
So who's wrong here? Are these guys harvesting addresses? Why would they have over 50 IP's to mail from? At the same time, here's their SenderBase lookup:
http://www.senderbase.org/search?searchString=38.113.200.23&whichOthers=%2F24
I have a customer that reported this as a false postive and wants to have this let through. Do I tell him that this is a mistake, similar to allowing someone to execute a virus? Do I report this to Bonded Sender?
Matt
--- [This E-mail was scanned for viruses by Declude Virus (http://www.declude.com)]
--- This E-mail came from the Declude.JunkMail mailing list. To unsubscribe, just send an E-mail to [EMAIL PROTECTED], and type "unsubscribe Declude.JunkMail". The archives can be found at http://www.mail-archive.com.
