http://issues.apache.org/SpamAssassin/show_bug.cgi?id=5297
------- Additional Comments From [EMAIL PROTECTED] 2007-01-18 08:55 ------- Well, clearly, this is not a bug of Watchguard Firebox Firewall, because the smtp-proxy service can be configured to allow the outgoing header X-Mailer and X-MimeOLE, thus overcoming the whole problem. The fact is that, the DEFAULT, is to remove those headers. Moreover, if the customer use a different client (instead of outlook), that does not put $ characters in the MessageID, the mail, even without X-Mailer and X-MimeOLE headers, is not marked as SPAM. Thus, only legitimate outlook users are forced to leave the X-Mailer and X-MimeOLE headers and this information leakage may be used by malicious users to exploit known outlook bugs. I don't think that Watchguard can be blamed to set a default that protect the identity of the MUA (or at least that protect part of the identity), clearly I will contact the support of Watchguard to see what they think about this issue, but I'm really concerned that they are not going to change anything and that my only option will be to lower the score of those rules... ------- You are receiving this mail because: ------- You are the assignee for the bug, or are watching the assignee.
