On 29/06/11 11:24, Benny Pedersen wrote:
On Wed, 29 Jun 2011 11:02:13 +0100, Ned Slider wrote:
header __RCVD_FROM_SOMEISP X-Spam-Relays-Last-External =~ /someisp\.com/i
bad rule, hostnames can have more then one ip, would you trust every ip
now ?
Who said anything about trusting the IP ?
I simply want to verify that the email was relayed to me from a
particular ISP as part of a meta rule. The very fact that the
hostname(s) do have many IPs is the reason for matching that rather than
trying to match multiple subnet ranges.
better would be to extend ASN plugin to have whitelist specific ASN or
blacklist
