https://issues.apache.org/SpamAssassin/show_bug.cgi?id=7083
[email protected] changed: What |Removed |Added ---------------------------------------------------------------------------- CC| |[email protected] --- Comment #2 from [email protected] --- Masked domains are proxied domains, ie points to a different ip than the original server. Some companies providing this service will never reveal original IP on abuse (ex: cloudflare) whatever the criminal activity is. crimeflare.com has a description of this. This is why this is now the preferred spammers way to spamvertise websites as the target website will always be running and proxyer will never shut down redirection (spam not coming from them...). They just need to snowhoe and post a link to that content or include asset from those hosts. Although proxying could be legitimate for some reasons, that could also be used as a signal, especially with no real body content. -- You are receiving this mail because: You are the assignee for the bug.
