On Fri, Mar 14, 2003 at 11:59:44AM -0500, Matt Kettler wrote: > Quite frankly, I'd avoid that though.. many viruses pretend to be bounce > messages to try to get the user to read them. I wouldn't be surprised to > see spammers generating fake bounce messages as spam.
I agree you don't want to have a generic "it's from postmaster@" nice rule. Too easy to forge. FYI, there are 3 (from what I can tell) rules for this kind of stuff, although two of them were GA disabled (too few hits it looks like): STATISTICS-set3.txt: 0.077 0.0047 0.1318 0.035 0.84 0.00 FAILURE_NOTICE_2 STATISTICS-set3.txt: 0.209 0.0174 0.3534 0.047 0.81 -2.60 MAILER_DAEMON STATISTICS-set3.txt: 0.052 0.0063 0.0863 0.068 0.76 0.00 FAILURE_NOTICE_1 -- Randomly Generated Tagline: "True hackers don't die, their ttl expires" - Unknown
pgp00000.pgp
Description: PGP signature
