We've been using senderbase to simulate whitelisting of most banking email messages. BUT, now we're seeing legitimate emails coming from banks like Captial One coming from providers like Bigfoot Interactive. These are good mails. Why Capital One is using a bulk mailing company to send them, I can't say.
What I'm wondering is the possiblity of having it coded so that we could have pairings of mail-from or from in header and senderbase. So don't white senderbase anything from Bigfoot Interactive automatically, but if senderbase says it's bigfoot interactive and the from name is [email protected] then let it through. I'd like to be able to list specific addresses or better yet a regex for the address. In this specific example, the mail-from is something unique like: 909715e88layf1vciao7va7yaaaaabtb0msdqdqgokayaa...@email.capitalone.com The from in the header is: [email protected] And the from ip is 206.132.3.145 Whitelisting [email protected] would be bad since that's the from address that phishers are using. I'm thinking of letting senderbase do it's thing as usual. If that doesn't pass our tests, return the information on what was found and then compare that to a separate list within assp of senders and senderbase results. That way, once we see that a given service is sending out through another provider, we can still allow it without having to allow everything from that provider. Constant Contact is another mailer that we certainly wouldn't want to senderbase white, but we might want to if it's from a sepecific sender. I hope I'm being clear. I can expand if necessary. If using senderbase combined with the from address isn't a realistic possibility, how about combining sender address and sender IP. This would require more work on the admin side, figuring out in this case valid entries for bigfoot, but it would be better than nothing. Thanks so much. ------------------------------------------------------------------------------ Let Crystal Reports handle the reporting - Free Crystal Reports 2008 30-Day trial. Simplify your report design, integration and deployment - and focus on what you do best, core application coding. Discover what's new with Crystal Reports now. http://p.sf.net/sfu/bobj-july _______________________________________________ Assp-test mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/assp-test
