At 01:46 AM 7/16/03 -0400, Gorm Jensen wrote:
I run spamassassin 2.55 on a Redhat 7.2 system

The attached email is spam, but it was not filtered because of the
"USER_IN_WHITELIST" assessment.  I studied my whitelist, and neither
the originator nor strings containing the originator are listed, so I
don't see how/why the message passed.

Can anybody tell why it happened?

Check the default whitelists in 60_whitelist.cf.. there's a few places in there like amazon and ebay.


In theory it should be hard to forge these, but a bug has been letting spammers forge a HELO as ebay and it will work. I read on sadev that the problem fixed in the devel versions (so should be fixed in 2.60 when released).

In the interim you can either:

1) remove the entries from 60_whitelist.cf (note the changes will be wiped out when you upgrade)
2) use unwhitelist_from commands in your local.cf or user_prefs to over-ride and disable them (this will stay even after an upgrade)




-------------------------------------------------------
This SF.net email is sponsored by: VM Ware
With VMware you can run multiple operating systems on a single machine.
WITHOUT REBOOTING! Mix Linux / Windows / Novell virtual machines at the
same time. Free trial click here: http://www.vmware.com/wl/offer/345/0
_______________________________________________
Spamassassin-talk mailing list
[EMAIL PROTECTED]
https://lists.sourceforge.net/lists/listinfo/spamassassin-talk

Reply via email to