On 03.07.2015 04:15, Alex wrote:
Hi,
On Thu, Jul 2, 2015 at 10:58 AM, Axb <axb.li...@gmail.com> wrote:
On 02.07.2015 02:56, Alex wrote:
Hi guys,
I've been receiving a handful of spam claiming to be from whatsapp,
and I can't figure out how to block it.
http://pastebin.com/8E66QRkn
http://pastebin.com/KrTgKGh1
What does a legitimate whatsapp email look like? I've searched their
site, and their DNS entry doesn't even have an MX record, let alone
any indication of SPF, etc.
Bayes is obviously a problem, but my bayes db generally performs well.
I'm sure the domains in the body would be listed now, and probably the
source addresses too.
Ideas greatly appreciated.
tried iXhash? (I assume you're also using Razor)
I am using Razor, but is iXhash still being developed and used in
production? It appears the last development was in 2013, and their
website has dead links...
I would hardly suggest using something which is dead....
http://sourceforge.net/projects/ixhash/
see "User Reviews" :
There is a newer (inofficial) plugin at mailfud.org/iXhash2/ Recommended
by original author at:
www.heise.de/ix/foren/S-iXHash-Plugin-ein-paar-Empfehlungen/forum-48292/msg-22474602/read/
Surprisingly to me, neither URL referenced in the samples
(auction.greendust.com and ubidibid.com) have yet to be added to a
blacklist, which to me means they either just haven't yet been added,
or the links are some kind of hacked accounts that redirect to another
site.
if BL traps/feeds don't see a hacked site's URL/spam sample they can't
list it.
