SFV:SPM is what you want to filter on, in headers https://learn.microsoft.com/en-us/defender-office-365/message-headers-eop-mdo
As for their high risk delivery pool I see this list but not on a Microsoft resource so please take that under advisement and do your due diligence https://sourceforge.net/p/assp/mailman/message/32783058/ —srs ________________________________ From: mailop <mailop-boun...@mailop.org> on behalf of Robert Giles via mailop <mailop@mailop.org> Sent: Monday, November 11, 2024 6:20:20 PM To: mailop@mailop.org <mailop@mailop.org> Subject: Re: [mailop] Blacklisting of Microsoft Exchange Online Nov. 2024 Interesting; is there a straightforward way to drop that traffic entirely? I think the HRDP IPs and hostnames are probably indistinguishable for folks outside of the Microsoft ecosystem, and "OutboundIpPoolName=HighRiskOutboundPool" is some tenant-viewable internal marker that's not actually embedded in the transmitted message. Robert On 11/11/2024 at 06:15, Scott Q. via mailop wrote: > But it's not really the same. Not all providers offer free accounts > which clearly attracts abusers a lot more than paid accounts. > Furthermore, not all providers do this: > > "Segregation of outbound email traffic: Every outbound message that's > sent through the service is scanned for spam. If the message is > determined to be spam, it's delivered from a secondary, less reputable > IP address pool named the high-risk delivery pool. For more information, > see..." > > "https://learn.microsoft.com/en-us/defender-office-365/outbound-spam-protection-about > > <https://learn.microsoft.com/en-us/defender-office-365/outbound-spam-protection-about>" _______________________________________________ mailop mailing list mailop@mailop.org https://list.mailop.org/listinfo/mailop
_______________________________________________ mailop mailing list mailop@mailop.org https://list.mailop.org/listinfo/mailop
