> > > >Time to remove docusign from RCVD_IN_DNSWL_MED and others that subtract > >points? This is not cool at all. > > correct, have you reported it? >
How do I do that? To the DNSWL group? I now have a subscription, but they never respond to support requests, even to numerous emails, including ad...@dnswl.org. There also appears to be a reference to an automated script using a key/token, but no information on how to do that. I can't spend time feeding these into some webform. >Even without having these rules, there isn't much in the body to catch a > >docusign phish that uses docusign directly. > > >https://pastebin.com/ij2MXi6c > > BAYES_00 also says something > It's unreasonable to think docusign or Paypal can be trusted? If so, why would it be DNSWL listed (and others) in the first place? On 08.11.24 16:48, MX wrote: > >I would just score anything DNSWL at 0. I mean no disrespect to the > maintainer of DNSWL but I just don’t find it useful these days. Spam is too > complex now. > > I'd give them small score so I can see they hit > - unless you want stop using that at all. > A small score seems reasonable, but aren't these part of masschecks? Are docusign/paypal/microsoft/etc scam emails part of masschecks or only the trusted ones? I just keep hearing about DNS/SPF and other problems with these domains, but they remain mostly trusted?
