There is a function for "whitelist-to" which allows mail to the person in the "to" field (not exactly, but you get my meaning). What about a blacklist-to? We have usernames that consistently show up in the to: or cc: for spam, and we know for sure any mail addressed to those users is spam (the user accounts are not valid, or no longer extant). Please add a blacklist-to configuration.
Also, a very nice rule to add would be a "to-is-invalid-user" rule. This rule checks the local user database (or a file?) and if the to: is invalid, then that adds to the scoring. This might be the same as my proposed blacklist-to but is more generic. In fact, several rules: to-is-invalid-user to-is-blacklisted-user to-has-mixed-nums to-starts-with-num etc. This actually is quite powerful. For example, I have performed some tests where I create a "honeypot" account and subscribe/publish/distribute the honeypotted email address. Filtering by "to" seems to be quite lacking in SpamAssassin. Or am I missing something? Any help? ------------------------------------------------------- This SF.net email is sponsored by: VM Ware With VMware you can run multiple operating systems on a single machine. WITHOUT REBOOTING! Mix Linux / Windows / Novell virtual machines at the same time. Free trial click here: http://www.vmware.com/wl/offer/345/0 _______________________________________________ Spamassassin-talk mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/spamassassin-talk
