I'm seeing spammers bypass whitelists by appending a few characters to my own username and using it as their own.
I'm confused. What address is whitelested (from? to?) and who is receiving the spam? Are they sending say other users on your system spam, and your address is whitelisted? Something's not done correctly if this is the case.
Evan