>>From [EMAIL PROTECTED] Wed Mar 2 15:01:17 2005
>Mailing-List: contact [EMAIL PROTECTED]; run by ezmlm
>...
>Delivered-To: mailing list [email protected]
>...
>
>I think the problem is being caused by IMP being "too good" at
>generating a Received header that looks like a normal one added
>by an MTA. Good enough to fool SpamAssassin into thinking it's
>an SMTP one, anyway. ;)
>
>Could someone open a bug about this? we may indeed be able to
>look for the "with HTTP" and ignore that.
Of course, that would leave a vulnerability to "formmail.pl" exploits
on misconfigured web servers being used as first hop proxies. I think the OP
should fix the IMP installation (ar add rules for the cases of both 127.0.0.1
and the RFC1918 leakage which I seem to remember in the original example - i.e.
192.168.x.x). When properly configured, the "-notfirsthop" qualifier should do
all that is needed.
>
>- --j.
>
>Shane Williams writes:
>> ...
Paul Shupak
[EMAIL PROTECTED]
