ram wrote:
> Is there a rule where I can give a score for enevelope from not
> matching header from
> Atleast the domain part
So, you want to match all messages from all mailing lists, including
this one? Envelope from to From: header mismatches are *very* common,
and there's RFC specified times at which this should occur.
>
>
> for eg, if someone forges my banks domain name in the header from ( They
> cant use that in the envelope from because my bank uses SPF records and
> phishers get caught easily ) then I want to mark it as spam. No one has
> any business putting mybanks domain name in the from id
>
Why not enable SA's SPF feature and let SPF_FAIL deal with this?
