Sunday, Nov 29, 2015 10:11 PM John Levine wrote: > Spam filters have been doing Received chain analysis for about 20 > years.
Yes, I know. A friend of mine founded a company that worked using this principal. Unfortunately, it got less and less effective as spammers got better and better at faking things. The reason I asked for recent experience is that I'm curious if anyone is _still_ getting real benefit from this. Since the only header-field you can actually trust is the first one that your own MTA adds, SPF works just as well (actually, a _lot_ better) as a validation mechanism. If SPF isn't in use, the sender can just claim to be a legitimate agent for the source domain, and you have no way to check that claim. -- Sent from Whiteout Mail - https://whiteout.io My PGP key: https://keys.whiteout.io/[email protected]
pgpmsC7DEkxKp.pgp
Description: PGP signature
_______________________________________________ Shutup mailing list [email protected] https://www.ietf.org/mailman/listinfo/shutup
