https://bz.apache.org/SpamAssassin/show_bug.cgi?id=7411
Bug ID: 7411
Summary: FORGED_MUA_MOZILLA using wrong header
Product: Spamassassin
Version: unspecified
Hardware: PC
OS: FreeBSD
Status: NEW
Severity: normal
Priority: P2
Component: Rules
Assignee: [email protected]
Reporter: [email protected]
Target Milestone: Undefined
FORGED_MUA_MOZILLA is looking at the wrong header, it's using X-Mailer when
actual Mozilla mailers use User-Agent. This is presumably why the rule only
hits 9 spams out of 150k.
It's also the cause of the recent Yahoo FPs where they are putting the client's
browser User-Agent on the end of their webmail X-Mailer headers.
I suggest changing
header __MOZILLA_MUA X-Mailer =~ /\bMozilla\b/
to
header __MOZILLA_MUA User-Agent =~ /^mozilla\b/i
Anchoring it seems prudent in case the Yahoo practice spreads - real Mozilla
headers do start with Mozilla. And I don't see the point of insisting that the
spammer gets the case right.
It might also be worth trying an extra rule:
header T_MOZILLA_XM X-Mailer =~ /^mozilla/i
--
You are receiving this mail because:
You are the assignee for the bug.
