Richard, In my experience it is not a good idea to whitelist the postmaster account for the exact reasons you posted below. If you have the postmaster account whitelisted any incoming spam with multiple recipients listed will end up having the mail delivered.
However, the setup of tests below that I outlined [1] allows the mail to be delivered to the postmaster, but [2] prevents it from being delivered to the other recipients. Hope that helps. Darrell ----------------------------------------------------- Check out http://www.invariantsystems.com for utilities for Declude and Imail. Quoting Richard Farris <[EMAIL PROTECTED]>: > Does it matter that I don't have postmaster whitelisted...is this test still > valid? > > Richard Farris > Ethixs Online > 1.270.247.5555 Office > 1.800.548.3877 Tech Support > > ----- Original Message ----- > From: "Darrell ([EMAIL PROTECTED])" <[EMAIL PROTECTED]> > To: <[EMAIL PROTECTED]> > Sent: Wednesday, May 19, 2004 1:44 PM > Subject: RE: [Declude.JunkMail] Whitelisted- getting thru > > > > Andy, > > > > This works because the action on the "Postmaster" test is ROUTETO back to > the > > postmaster. > > > > How it works > > [1] Lowers the weight of the email by 100 so that the message will not be > held > > or deleted in our system > > [2] Re-routes the message back to the postmaster only if the postmaster > account > > was an actual recipient of that email. > > > > Our policy is that we want to accept any mail destined to the postmaster > or > > abuse account simply because if someone is being blocked by our spam > filtering > > we would like to give them the opportunity to contact us to resolve the > issue. > > > > However, with just whitelisting the postmaster account you open yourself > up to > > allowing spam to your users if the spammer adds the postmaster account to > the > > email. > > > > The solution above mitigates this, because it reroutes the message to the > > postmaster preventing it from going to the user. The -100 just prevents > it > > from being deleted. > > > > So in the end > > [1] The postmaster gets the mail and the other recipients don't. > > > > Darrell > > > > Quoting Andy Schmidt <[EMAIL PROTECTED]>: > > > > > Darrell: > > > > > > Your technique assigns a weight of -100 to the mail if it contains a > certain > > > email address as the recipient? > > > > > > Once the mail has a weight of -100 (adjusted by any failed tests) - how > does > > > that PREVENT the email from being delivered to all the OTHER recipients? > > > > > > I'm not clear how the effect is different from a whitelist? > > > > > > Best Regards > > > Andy Schmidt > > > > > > H&M Systems Software, Inc. > > > 600 East Crescent Avenue, Suite 203 > > > Upper Saddle River, NJ 07458-1846 > > > > > > Phone: +1 201 934-3414 x20 (Business) > > > Fax: +1 201 934-9206 > > > > > > http://www.HM-Software.com/ > > > > > > > > > -----Original Message----- > > > From: [EMAIL PROTECTED] > > > [mailto:[EMAIL PROTECTED] On Behalf Of Darrell > > > ([EMAIL PROTECTED]) > > > Sent: Wednesday, May 19, 2004 12:51 PM > > > To: [EMAIL PROTECTED] > > > Subject: Re: [Declude.JunkMail] Whitelisted- getting thru > > > > > > > > > Richard, > > > > > > This is a common problem especially when dealing with postmaster > account. > > > Most people whitelist postmaster and because spammers know this they > often > > > include a postmaster address because they know the message (even to the > > > other recipients) will be delivered. > > > > > > I posted awhile back on what I do to get around it. Check out > > > http://www.mail-archive.com/[EMAIL PROTECTED]/msg11041.html > > > > > > Hope this helps! > > > Darrell > > > > > > ----------------------------------------------------- > > > Check out http://www.invariantsystems.com for utilities for Declude and > > > Imail. > > > > > > Quoting Richard Farris <[EMAIL PROTECTED]>: > > > > > > > I have noticed that some of the spam getting thru is because a I have > > > > several in my whitelist and even though it is not addressed to them it > > > > sends it on because the whitelisted email is in the CC or BCC... > > > > > > > > Isn't there any way to whitelist only if it is addressed to that > > > > person in the To: box? > > > > > > > > Richard Farris > > > > Ethixs Online > > > > 1.270.247.5555 Office > > > > 1.800.548.3877 Tech Support > > > > > > > > > > > > > > > > > > > > --- > > > [This E-mail was scanned for viruses by Declude Virus > > > (http://www.declude.com)] > > > > > > --- > > > This E-mail came from the Declude.JunkMail mailing list. To > unsubscribe, > > > just send an E-mail to [EMAIL PROTECTED], and type "unsubscribe > > > Declude.JunkMail". The archives can be found at > > > http://www.mail-archive.com. > > > > > > --- > > > [This E-mail was scanned for viruses by Declude Virus > > > (http://www.declude.com)] > > > > > > --- > > > This E-mail came from the Declude.JunkMail mailing list. To > > > unsubscribe, just send an E-mail to [EMAIL PROTECTED], and > > > type "unsubscribe Declude.JunkMail". The archives can be found > > > at http://www.mail-archive.com. > > > > > > > > > ----------------------------------------------------- > > Check out http://www.invariantsystems.com for utilities for Declude and > Imail. > > > > --- > > [This E-mail was scanned for viruses by Declude Virus > (http://www.declude.com)] > > > > --- > > This E-mail came from the Declude.JunkMail mailing list. To > > unsubscribe, just send an E-mail to [EMAIL PROTECTED], and > > type "unsubscribe Declude.JunkMail". The archives can be found > > at http://www.mail-archive.com. > > > > > > --- > [This E-mail was scanned for viruses by Declude Virus > (http://www.declude.com)] > > --- > This E-mail came from the Declude.JunkMail mailing list. To > unsubscribe, just send an E-mail to [EMAIL PROTECTED], and > type "unsubscribe Declude.JunkMail". The archives can be found > at http://www.mail-archive.com. > --- [This E-mail was scanned for viruses by Declude Virus (http://www.declude.com)] --- This E-mail came from the Declude.JunkMail mailing list. To unsubscribe, just send an E-mail to [EMAIL PROTECTED], and type "unsubscribe Declude.JunkMail". The archives can be found at http://www.mail-archive.com.
