If you are looking to help insure that E-mail from a particular domain gets through, it's better to just subtract points in a filter file rather than whitelisting because of the potential of forging addresses in spam and still desiring some protection (obscure domains are pretty safe though for whitelisting though). I tend to give a negative weight for such things that is equal to my fail weight when those domains occasionally find their way onto SpamCop and MailPolice, or just credit back points for what they regularly fail. I also use the REVDNS test whenever possible since this is the least likely to be forged and there is only a small piece of data which limits multiple hits (as opposed to searching HEADERS). For example, with Yahoo Groups, one would use the following when 5 points are being added regularly due to RBL's and inadvertently by other filters:
REVDNS -5 ENDSWITH .grp.scd.yahoo.com
This is a good example because Yahoo Groups does fail some tests that I use, but as was pointed out yesterday, spam can be pushed through these groups occasionally and if you are keyword matching for URL's for instance, subtracting points would only level the playing field before additional tests can score it.
Matt
Robert Grosshandler wrote:
Having just upgraded from JM Standard to Pro, I'm wondering about the best way to approach some of the tests I previously set up.
Is there any difference between the following from a performance or maintenance standpoint?:
Version A
Whitelist anywhere blahblah
Or
Version B
BODY -50 CONTAINS blahblah
Thanks
Rob
=========================== Robert N. Grosshandler www.iGive.com
--- [This E-mail was scanned for viruses by Declude Virus (http://www.declude.com)]
--- This E-mail came from the Declude.JunkMail mailing list. To unsubscribe, just send an E-mail to [EMAIL PROTECTED], and type "unsubscribe Declude.JunkMail". The archives can be found at http://www.mail-archive.com.
