-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Tim Rice wrote: > On Thu, 8 Feb 2007, Stephen Warren wrote: > >> That said, even when spammers forge addresses in your domain, do they >> ever do that *just* for From/Reply-to and *not* for the envelope sender? > > Yes. That is why it gets through. > The ones that forge the envelope sender get dropped by SPF.
How sneaky. I suggest a sendmail milter, or postfix pre-queue filter, or data-time policy daemon that checks for forged headers and rejects them in the same way then (or whatever is appropriate for your MTA.) I'm afraid I don't know of any pre-written filters that do this, though if this problem is happening for you, I wouldn't be surprised if somebody has already solved it! -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.2 (MingW32) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iD8DBQFFy8V9hk3bo0lNTrURAnmeAKDupgqo9uSTzE+Xf0H70m/t1Wuc0wCfQSUl wizEjSFyL3JZI9ZToOfZcjE= =Dp3I -----END PGP SIGNATURE----- _________________________________________________ tmda-workers mailing list ([email protected]) http://tmda.net/lists/listinfo/tmda-workers
