On Thu, 2010-12-09 at 20:18 +, Cedric Knight wrote:
> I noticed some bad false positives on email sent...
>
> Received: from 94.229.160.4.srvlist.ukfast.net
> (94.229.160.4.srvlist.ukfast.net [94.229.160.4])
ukfast == firewall on site. IME a major source of little more than spam
in the UK. Th
Anyway, why are *web* servers sending out mail at all?
My web servers are sending out mail all the time. From website contact
forms, Forum notifications, pothole reports to local authorities, as well
as sysadmin messages.
In fact I'd be more surprised to find web servers *not* sending out
On Thu, 9 Dec 2010, Karsten Br?ckelmann wrote:
On Thu, 2010-12-09 at 14:43 -0800, John Hardin wrote:
It appears that a client can easily set up hosting using cPanel or
something without ever setting the rDNS or hostname to anything other
than the numeric default.
Is there anything in the head
On tor 09 dec 2010 21:30:39 CET, Karsten Bräckelmann wrote
Received: from 94.229.160.4.srvlist.ukfast.net
(94.229.160.4.srvlist.ukfast.net [94.229.160.4])
Looks like a dynamic hostname indeed.
but static ip range according to
http://www.db.ripe.net/whois?form_type=simple&full_query_string=&se
On 09/12/10 22:43, John Hardin wrote:
> On Thu, 9 Dec 2010, Cedric Knight wrote:
>
>> It appears that a client can easily set up hosting using cPanel or
>> something without ever setting the rDNS or hostname to anything other
>> than the numeric default.
>
> Is there anything in the headers that in
On Thu, 9 Dec 2010, Karsten Bräckelmann wrote:
> On Thu, 2010-12-09 at 14:43 -0800, John Hardin wrote:
> > > It appears that a client can easily set up hosting using cPanel or
> > > something without ever setting the rDNS or hostname to anything other
> > > than the numeric default.
> >
> > Is the
On Thu, 2010-12-09 at 14:43 -0800, John Hardin wrote:
> > It appears that a client can easily set up hosting using cPanel or
> > something without ever setting the rDNS or hostname to anything other
> > than the numeric default.
>
> Is there anything in the headers that indicates cpanel is in us
On Thu, 2010-12-09 at 23:02 +0100, Matus UHLAR - fantomas wrote:
> > Ah, so they are operational, just poorly configured. That's what you
> > just said in other words, right? :)
> >
> > Anyway, why are *web* servers sending out mail at all? Other than maybe
> > cron junk and friends, which would w
On Thu, 9 Dec 2010, Cedric Knight wrote:
It appears that a client can easily set up hosting using cPanel or
something without ever setting the rDNS or hostname to anything other
than the numeric default.
Is there anything in the headers that indicates cpanel is in use? Perhaps
a meta on cpan
On Thu, 2010-12-09 at 21:59 +, Cedric Knight wrote:
> On 09/12/10 20:30, Karsten Bräckelmann wrote:
> > Anyway, why are *web* servers sending out mail at all? Other than maybe
> > cron junk and friends, which would warrant bypassing SA or extending
> > your internal network. If they are indeed
> On Thu, 2010-12-09 at 20:18 +, Cedric Knight wrote:
> > I noticed some bad false positives on email sent from certain web
> > servers that haven't (yet) been properly configured. For example, a
> > trusted header line starting:
>
> Ah, so they are operational, just poorly configured. That's
On 09/12/10 20:30, Karsten Bräckelmann wrote:
> On Thu, 2010-12-09 at 20:18 +, Cedric Knight wrote:
>> I noticed some bad false positives on email sent from certain web
>> servers that haven't (yet) been properly configured. For example, a
>> trusted header line starting:
>
> Ah, so they are o
On Thu, 2010-12-09 at 20:18 +, Cedric Knight wrote:
> I noticed some bad false positives on email sent from certain web
> servers that haven't (yet) been properly configured. For example, a
> trusted header line starting:
Ah, so they are operational, just poorly configured. That's what you
ju
I noticed some bad false positives on email sent from certain web
servers that haven't (yet) been properly configured. For example, a
trusted header line starting:
Received: from 94.229.160.4.srvlist.ukfast.net
(94.229.160.4.srvlist.ukfast.net [94.229.160.4])
looks to SpamAssassin like the dynam
14 matches
Mail list logo
