https://issues.apache.org/SpamAssassin/show_bug.cgi?id=6124
--- Comment #7 from AXB <[email protected]> 2009-06-05 08:10:47 PST --- (In reply to comment #6) > (In reply to comment #5) > > if anyone has actual FPs, please attach samples (and the "trusted_networks" > > / > > "internal_networks" config) that reproduce it. > > > > Sadly, I'm using Mailscanner which can't add the headers to the msg but does > "process" them. > > Deployed the rule in production with a 0.001 score and it started hitting on > those corporate Exchange HELOs. > > I cannot disclose log snippets in bugzilla but could send to JM privately. > legit HELOs since rule deployment: helo=<CMAGS001.CovraMetallAG.lan> helo=<heb-mainsrv.HEBLATTER.lan> \w+\.\w+\.lan is yet another .local, .internal variation used by many corps (MSCE training ?). Its obviously bad but how much worse than Telefonica's .correo can it get? \w+\.(lan|home) would probably be safe. -- Configure bugmail: https://issues.apache.org/SpamAssassin/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are the assignee for the bug.
