On 9 Aug 2006 at 14:58, Dickson, Paul wrote: > This is my level 2 blocking, and level 2 is set for all three areas: > ad[ep]|asx|ba[st]|chm|cmd|com|cpl|crt|dbx|exe|hlp|ht[ab]|hqx|in[fs]|isp| > js|jse|lnk|md[abez]|mht|ms[cipt]|nch|pcd|pif|prf|reg|sc[frt]|sh[bs]|vb|v > b[es]|wms|ws[cfh]|zip > > Notice the |zip on the end. > > Below is the only mail she has gotten today. It seems someone is > sending to her, from her, with an IP that is NOT designated as an > @fredco-md.net mail server IP in assp. 1: shouldn't this been blocked > as a spoofed email address, and 2: shouldn't the ZIP have been blocked > regardless?
1. You are checking spf, but it's not set up for fredco-md. Are you rejecting on the softfail in the default policy? 2. Which of the 3 had the zip? Were there any bad mime headers in the attachment? Paul ------------------------------------------------------------------------- Using Tomcat but need to do more? Need to support web services, security? Get stuff done quickly with pre-integrated technology to make your job easier Download IBM WebSphere Application Server v.1.0.1 based on Apache Geronimo http://sel.as-us.falkag.net/sel?cmd=lnk&kid=120709&bid=263057&dat=121642 _______________________________________________ Assp-user mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/assp-user
