Hi
Todd:
It's
this line that the other test is checking:
Received: from 65.16.167.134 ([211.249.122.134])
It
discovers that the other side was using YOUR servers IP address in its own HELO
string.
I'm
pretty certain that the "HELOVALID" test in declude will catch that. - but, it
will also be triggered for other conditions that are just sign of clueless mail
admins.
You
could also use a filter to look for your IP range in the
string:
HELO 4
STARTSWITH [
HELO 8 STARTSWITH 65.16.167. Best
Regards
Andy Schmidt H&M Systems Software, Inc. 600 East Crescent Avenue, Suite 203 Upper Saddle River, NJ 07458-1846 Phone: +1 201 934-3414 x20 (Business) Fax: +1 201 934-9206 http://www.HM-Software.com/
|
Title: Message
- [Declude.JunkMail] Fake IP Test Todd
- RE: [Declude.JunkMail] Fake IP Test Andy Schmidt
- RE: [Declude.JunkMail] Fake IP Test Kevin Bilbee
- Re: [Declude.JunkMail] Fake IP Test Rick Davidson
- Re: [Declude.JunkMail] Fake IP Test Todd
- RE: [Declude.JunkMail] Fake IP Test Goran Jovanovic
- RE: [Declude.JunkMail] Fake IP Test Goran Jovanovic
- RE: [Declude.JunkMail] Fake IP Test Colbeck, Andrew