I run spamassassin 2.55 on a Redhat 7.2 system
The attached email is spam, but it was not filtered because of the "USER_IN_WHITELIST" assessment. I studied my whitelist, and neither the originator nor strings containing the originator are listed, so I don't see how/why the message passed.
Can anybody tell why it happened?
Check the default whitelists in 60_whitelist.cf.. there's a few places in there like amazon and ebay.
In theory it should be hard to forge these, but a bug has been letting spammers forge a HELO as ebay and it will work. I read on sadev that the problem fixed in the devel versions (so should be fixed in 2.60 when released).
In the interim you can either:
1) remove the entries from 60_whitelist.cf (note the changes will be wiped out when you upgrade)
2) use unwhitelist_from commands in your local.cf or user_prefs to over-ride and disable them (this will stay even after an upgrade)
------------------------------------------------------- This SF.net email is sponsored by: VM Ware With VMware you can run multiple operating systems on a single machine. WITHOUT REBOOTING! Mix Linux / Windows / Novell virtual machines at the same time. Free trial click here: http://www.vmware.com/wl/offer/345/0 _______________________________________________ Spamassassin-talk mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/spamassassin-talk