https://issues.apache.org/SpamAssassin/show_bug.cgi?id=4469
--- Comment #15 from John Hardin <[email protected]> 2009-08-21 09:10:13 PST --- (In reply to comment #14) > Mark: how do you deal with the danger of phishers inserting fake > 'X-Amavis-MessageSize: mmmmm, TRUNCATED to nnnnn' headers in their templates > to avoid DKIM checks? (you could avoid it by ensuring the header appears at > the start of the message, before any trusted+internal Received hdrs, if you're > not already doing that.) A better way to avoid that problem is to have the header include the local hostname and IP address. Depending on position to determine trust is fragile. Depending on data a phisher is unlikely to know, and is thus unlikely to be able to successfully forge, is much more robust. e.g.: As a workaround, to a truncated message passed to spam scanners, amavisd inserts a header field: X-Amavis-MessageSize: mmmmm, TRUNCATED to nnnnn on mta1.example.com [nn.nn.nn.nn] Then the existing trust list can be used to vet the header. -- Configure bugmail: https://issues.apache.org/SpamAssassin/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are the assignee for the bug.
