Chuck,
Yes, you can make a version of SPAMDOMAINS that lists your own domains
figuring that your own customers will be whitelisted for AUTH or IP and
therefore not hit by that filter.
IMO, even though they are forging addresses and their content may be
spammy, those two things don't necessarily represent the best way to tag
such guys. Gateways that tarpit or greylist like ORF and Alligate will
block virtually zombie spammers with minimal effort, and if configured
properly, without false positives. I only currently know of one zombie
spammer that defeats greylisting, and a good number of them fail when
tarpitted.
Matt
Chuck Schick wrote:
I am starting to see a lot of spam email that uses the recipient domain in
the from address. So if the mail is going to [EMAIL PROTECTED] the
from address may be something like [EMAIL PROTECTED] Is there any
declude test to see if the sender is valid for local domains??? I thought I
remembered something about the spammers using a wildcard to just fill in the
recipient domain for the from address - seems like there should be a method
to block this.
Chuck Schick
Warp 8, Inc.
(303)-421-5140
www.warp8.com
---
This E-mail came from the Declude.JunkMail mailing list. To
unsubscribe, just send an E-mail to [EMAIL PROTECTED], and
type "unsubscribe Declude.JunkMail". The archives can be found
at http://www.mail-archive.com.
---
This E-mail came from the Declude.JunkMail mailing list. To
unsubscribe, just send an E-mail to [EMAIL PROTECTED], and
type "unsubscribe Declude.JunkMail". The archives can be found
at http://www.mail-archive.com.
