http://bugzilla.spamassassin.org/show_bug.cgi?id=3959
Summary: Observed spoofed FROM addresses in WHITELIST
Product: Spamassassin
Version: 3.0.0
Platform: Other
OS/Version: other
Status: NEW
Severity: normal
Priority: P5
Component: Rules
AssignedTo: [email protected]
ReportedBy: [EMAIL PROTECTED]
Please forgive me if this is a known issue, or should be sent elsewhere.
I've been seeing a trend. I've got my prefs set pretty tight and it catches
almost everything. What is getting through is doing so in a rather clever way.
I have whitelisted certain addresses on my domain (like mine, for instance) to
make sure if I foreward something around to someone else in my organization,
they get it.
I'm seeing my email address spoofed as the FROM address, and thus its
whitelisted and the rest of the scores being irrelavant.
Is there a way to lock the whitelist so that it requires the "name" to match the
"email" in order to count? (Ergo "Jeff Guthridge, [EMAIL PROTECTED]"
matches, while "Big Johnson, [EMAIL PROTECTED]" does not)
With the growing number of viruses and such that spoof their FROM headers,
spoofing the spam as to and from the intended target will only get more and more
popular as tools like SA get better and better.
Jeff
------- You are receiving this mail because: -------
You are the assignee for the bug, or are watching the assignee.
