* Chris Lear wrote (01/12/06 16:57):
> * Adam Stephens wrote (01/12/06 16:10):
>> Chris Lear wrote:
>>> * Loren Wilton wrote (01/12/06 14:54):
>>>
> The html contains this sort of thing:
> http://www.easyjet.com/EN/Members/
>
> Which looks like the culprit. In fact, every full st
In article <[EMAIL PROTECTED]>,
David B Funk <[EMAIL PROTECTED]> writes
>FYI, easyjet.com appears to have a valid SPF record, so
>
> whitelist_from_spf [EMAIL PROTECTED]
>
>should also work with out the hastle of trying to stay ahead
>of mailserver changes.
Unfortunately it looks like savvis.net
On Fri, 1 Dec 2006, Loren Wilton wrote:
> > HTML_FONT_FACE_BAD=0.156
> > HTML_MESSAGE=0.001
> > HTML_TINY_FONT=2.324
> > MARKETING_PARTNERS=1.765
> > MIME_HTML_MOSTLY=1.102
> > SARE_OBFU_AMP2B=2.555
> > SARE_SPEC_LEO_LINE03a=0.408
> >
> > I think the "Received: from mail pickup service" line is ca
On Fri, 1 Dec 2006, Nick Leverton wrote:
> On Friday 01 December 2006 11:33, Chris Lear wrote:
> > I got an EasyJet confirmation E-mail that scored like this:
>
> whitelist_from_rcvd [EMAIL PROTECTED] savvis.net
>
FYI, easyjet.com appears to have a valid SPF record, so
whitelist_from_spf [EMAI
On Fri, 1 Dec 2006, Nick Leverton wrote:
> On Friday 01 December 2006 11:33, Chris Lear wrote:
> > I got an EasyJet confirmation E-mail that scored like this:
>
> whitelist_from_rcvd [EMAIL PROTECTED] savvis.net
...which should probably go in the SARE Known Whitelists ruleset?
--
John Hardin K
On Friday 01 December 2006 11:33, Chris Lear wrote:
> I got an EasyJet confirmation E-mail that scored like this:
whitelist_from_rcvd [EMAIL PROTECTED] savvis.net
Nick
Chris Lear wrote:
Thanks for all the advice. I've reluctantly whitelisted them and written
a polite message to [EMAIL PROTECTED] It doesn't seem to have
bounced, so maybe someone will read it. I'll let you know if I get a
response.
Meanwhile, I suppose this is something for others to be aware of
* Adam Stephens wrote (01/12/06 16:10):
> Chris Lear wrote:
>> * Loren Wilton wrote (01/12/06 14:54):
>>
The html contains this sort of thing:
http://www.easyjet.com/EN/Members/
Which looks like the culprit. In fact, every full stop in the html is
represented as . for so
Chris Lear wrote:
* Loren Wilton wrote (01/12/06 14:54):
The html contains this sort of thing:
http://www.easyjet.com/EN/Members/
Which looks like the culprit. In fact, every full stop in the html is
represented as . for some reason.
Still wondering though... how do you solve a problem like
On Friday 01 December 2006 11:33, Chris Lear wrote:
> I got an EasyJet confirmation E-mail that scored like this:
whitelist_from_rcvd [EMAIL PROTECTED] savvis.net
Nick
Chris Lear wrote:
I got an EasyJet confirmation E-mail that scored like this:
BAYES_00=-2.599
DNS_FROM_RFC_ABUSE=0.2
FORGED_RCVD_HELO=0.135
HTML_FONT_FACE_BAD=0.156
HTML_MESSAGE=0.001
HTML_TINY_FONT=2.324
MARKETING_PARTNERS=1.765
MIME_HTML_MOSTLY=1.102
SARE_OBFU_AMP2B=2.555
SARE_SPEC_LEO_LINE03a
Chris Lear wrote:
* Loren Wilton wrote (01/12/06 14:54):
The html contains this sort of thing:
http://www.easyjet.com/EN/Members/
Which looks like the culprit. In fact, every full stop in the html is
represented as . for some reason.
Still wondering though... how do you solve a problem like Ea
On 12/1/06, Chris Lear <[EMAIL PROTECTED]> wrote:
In fact, every full stop in the html is
represented as . for some reason.
In SMTP, a dot all by itself on a line is interpreted as the end of
the message. The SMTP client is supposed to double any such dot that
is truly present in the message b
>> > The html contains this sort of thing:
>> > http://www.easyjet.com/EN/Members/
>> >
>> > Which looks like the culprit. In fact, every full stop in the html is
>> > represented as . for some reason.
>> >
>> > Still wondering though... how do you solve a problem like EasyJet?
>>
>>
>> Sure look
* Loren Wilton wrote (01/12/06 14:54):
>> The html contains this sort of thing:
>> http://www.easyjet.com/EN/Members/
>>
>> Which looks like the culprit. In fact, every full stop in the html is
>> represented as . for some reason.
>>
>> Still wondering though... how do you solve a problem like Easy
The html contains this sort of thing:
http://www.easyjet.com/EN/Members/
Which looks like the culprit. In fact, every full stop in the html is
represented as . for some reason.
Still wondering though... how do you solve a problem like EasyJet?
Sure looks like spam to me. ;-)
Which also look
* Loren Wilton wrote (01/12/06 13:57):
>> HTML_FONT_FACE_BAD=0.156
>> HTML_MESSAGE=0.001
>> HTML_TINY_FONT=2.324
>> MARKETING_PARTNERS=1.765
>> MIME_HTML_MOSTLY=1.102
>> SARE_OBFU_AMP2B=2.555
>> SARE_SPEC_LEO_LINE03a=0.408
>>
>> I think the "Received: from mail pickup service" line is causing the
>
HTML_FONT_FACE_BAD=0.156
HTML_MESSAGE=0.001
HTML_TINY_FONT=2.324
MARKETING_PARTNERS=1.765
MIME_HTML_MOSTLY=1.102
SARE_OBFU_AMP2B=2.555
SARE_SPEC_LEO_LINE03a=0.408
I think the "Received: from mail pickup service" line is causing the
SARE_OBFU_AMP2B rule to fire. Am I right? If so, isn't this likel
I got an EasyJet confirmation E-mail that scored like this:
BAYES_00=-2.599
DNS_FROM_RFC_ABUSE=0.2
FORGED_RCVD_HELO=0.135
HTML_FONT_FACE_BAD=0.156
HTML_MESSAGE=0.001
HTML_TINY_FONT=2.324
MARKETING_PARTNERS=1.765
MIME_HTML_MOSTLY=1.102
SARE_OBFU_AMP2B=2.555
SARE_SPEC_LEO_LINE03a=0.408
Which adds t
19 matches
Mail list logo
