On 9.9.2015 22:41, Joe Quinn wrote:
On 9/9/2015 3:35 PM, Jari Fredriksson wrote:
8.0 KAM_FACEBOOKMAIL Fake or Abused Facebook Mail
Ouch.
I received a valid mail from Facebook telling me that a friend
mentioned my name in a post. 8.0?
Are you sure it was valid? Did the message hit SPF_FAIL or
DKIM_ADSP_ALL? Can you post a sample? It's scored it 8.0 because
Facebook uses SPF and DKIM, so the rule should be perfectly safe.
I posted it to KAM off list.
It has:
0.0 SPF_FAIL SPF: sender does not match SPF record
(fail)
[SPF failed: Please see
http://www.openspf.net/Why?s=mfrom;id=notification%2Bkjdmk5uhu7um%40facebookmail.com;ip=104.214.219.241;r=gamecock]
-1.9 BAYES_00 BODY: Bayes spam probability is 0 to 1%
[score: 0.0000]
1.0 HTML_MESSAGE BODY: HTML included in message
0.0 HTML_FONT_LOW_CONTRAST BODY: HTML font color similar or identical
to
background
-0.1 DKIM_VALID_AU Message has a valid DKIM or DK signature
from author's
domain
-0.0 DKIM_VERIFIED No description available.
-0.1 DKIM_VALID Message has at least one valid DKIM or DK
signature
0.1 DKIM_SIGNED Message has a DKIM or DK signature, not
necessarily valid
0.0 UNPARSEABLE_RELAY Informational: message has unparseable
relay lines
8.0 KAM_FACEBOOKMAIL Fake or Abused Facebook Mail
0.0 T_REMOTE_IMAGE Message contains an external image
--
jarif.bit
