http://issues.apache.org/SpamAssassin/show_bug.cgi?id=5209
Summary: Suggest checking all untrusted addresses against XBL.
Product: Spamassassin
Version: 3.1.7
Platform: Other
OS/Version: other
Status: NEW
Severity: normal
Priority: P5
Component: Rules (Eval Tests)
AssignedTo: [email protected]
ReportedBy: [EMAIL PROTECTED]
Today I recieved a piece of spam with the following routing:
Spammer -> Open Proxy (XBL listed) -> Open Relay (unlisted) -> My host
Because spamassassin does not check the XBL except with -lastexternal, and
because the open relay was unlisted, the spam was falsely marked as ham.
Is there a good reason why we only check the XBL against the last connecting
machine? Even if you assume all open relays are listed somewhere, the spammer
can still connect to a closed relay (that is open to the spammer).
------- You are receiving this mail because: -------
You are the assignee for the bug, or are watching the assignee.
