On Wed, May 29, 2002 at 09:04:32PM -0700, Dan Kohn wrote: > This can just be: > > whitelist_from *amazon.de > whitelist_from *ebay.de >
You've got mail from spamazon.de! Spamassassin didn't catch it cuz it's whitelisted! > However, I would suggest that these lines (and probably everything else) > should be commented out by default in 60_whitelist.cf. Having them > there makes it to easy for chickenboner spammers to reliably evade > SpamAssassin. If we each add these whitelists individually, it's much > less likely that the results will be consistent enough to make it > worthwhile for a spammer to forge. I'd suggest that commenting out the > whitelist is a good compromise. I agree that we shouldn't be adding to the whitelist. False positives do happen though with companies in the whitelist, but we should be careful with whom we add to the list. Perhaps instead of a whitelist, we should do a Recieved: header check for these sites to ensure legitimacy. -- Duncan Findlay _______________________________________________________________ Don't miss the 2002 Sprint PCS Application Developer's Conference August 25-28 in Las Vegas -- http://devcon.sprintpcs.com/adp/index.cfm _______________________________________________ Spamassassin-talk mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/spamassassin-talk
