On 05/11/2014 11:11 AM, Luca Bertoncello wrote:
Hi!
Since some days I receive a huge amount of E-Mail like this:
Hey!
http://taxi-gruz.nichost.ru/search_bing.html?iwjvyluwo=2277344&opjrep=9504
Of course, it's not enough for a baysian test.
The report is just:
* 0.0 FREEMAIL_FROM Sender email is commonly abused enduser mail provider *
(XXXX[at]gmx.net)
* -0.0 SPF_PASS SPF: Senderechner entspricht SPF-Datensatz
* 1.2 RDNS_NONE Delivered to internal network by a host with no rDNS
Could someone help me to write a rule to block these E-Mails?
your "like this" isn't very helpful - suggest you put a sample on pastebin
