>-----Original Message----- >From: Daryl C. W. O'Shea [mailto:[EMAIL PROTECTED] >Sent: Wednesday, March 09, 2005 11:04 AM >To: Chris Santerre >Cc: 'Robert Menschel'; users@spamassassin.apache.org >Subject: Re: Whitelist collection project > > >Chris Santerre wrote: >> This might just be the first time I disagree with you Bob ;) >> >> I don't see how this ruleset will not get abused. If I was a >spammer I would >> make sure all my spam hit these rules to let me in. >> >> As a research tool it is great! Already the SURBL whitelist >is one of the >> best around thanks to Jeff's work. He went mad for a few >weeks and collected >> just about every bit of whitelist info from the net. >> >> IMHO, public negative scoring rules are not a good idea, >despite there best >> intentions. Maybe if the airlines made there emails look >less like spam? :) >> >> -1 >> >> --Chris (Just my opinion. I've been outruled many times >before....its pretty >> fun!) > >How do you propose that whitelist_from_rcvd or whitelist_from_spf be >abused, other than due to a mis configured or compromised server? > >Daryl
First I propose I don't answer anymore email until I get off this cold medication :) Second, I believe SPF records can be spoofed/use in a disposibal manner. But thats my medicated brain half telling me I might remember reading something about that. As for rcvd, I'm not sure how secure that is to faked headers. But you can bet they are going to try to abuse it anyway they can. If you can get code to deal with those issues, then hell yeah! I also like Theos idea of using it for the 'skipped' domains. --Chris
