> >This would be a test similar to SPAMDOMAINS but instead would be > SPAMREVDNS. > >Instead of seeing if the domain matches the REVDNS, it would check if the > >REVDNS matches the domain. > > > >It would work like this: > > > >.aol.com @aol.com > > > >If the REVDNS ended with .aol.com but the from address did not end in > >@aol.com, it would fail. > > That is a very interesting idea. I'm not sure offhand how useful it would > end up being, but is worth exploring.
I have seen a good number of spam with a REVDNS of .aol.com but with other domains in the from address. Same thing with a REVDNS of adelphia.com and such. The intent would be to weight at about 1/4 of delete. That would cause any caught by other tests but not quite enough to be deleted to be pushed over the edge, yet low enough that truly legit even if failed would be fine. John Tolmachoff Engineer/Consultant/Owner eServices For You --- [This E-mail was scanned for viruses by Declude Virus (http://www.declude.com)] --- This E-mail came from the Declude.JunkMail mailing list. To unsubscribe, just send an E-mail to [EMAIL PROTECTED], and type "unsubscribe Declude.JunkMail". The archives can be found at http://www.mail-archive.com.
