I've seen a few messages recently that contained the header
X-message-flag: Authentic Sender, Hash: PoHgCaAr
My questions are, are they trying to simulate something like hash cash? Does
anyone know of a MUA that inserts/utilizes this header?
I would like to insert a local rule to score on this similar to the
X_MESSAGE_INFO rule in 20_ratware.cf, but wanted to ask of others' opinion
first:
header X_MESSAGE_INFO exists:X-Message-Info
describe X_MESSAGE_INFO Bulk email fingerprint (X-Message-Info) found
--------------- examples -------------------
Subject: ***SPAM*** Call me
Date: Tue, 12 Oct 2004 03:11:44 -0500
MIME-Version: 1.0
Content-Type: multipart/related;
boundary="----=_NextPart_000_00NX_00B9614KA_04C.008C38K0"
X-Mailer: Microsoft Office Outlook, Build 11.0.6353
X-message-flag: Authentic Sender, Hash: TrVfLjGp
Message-Id: <[EMAIL PROTECTED]>
Subject: ***SPAM*** Your test results
Date: Tue, 12 Oct 2004 11:58:41 -0500
MIME-Version: 1.0
Content-Type: multipart/related;
boundary="----=_NextPart_000_00KS_01G0282KJ_04E.864L81I0"
X-Mailer: Microsoft Office Outlook, Build 11.0.6353
X-message-flag: Authentic Sender, Hash: PoHgCaAr
Message-Id: <[EMAIL PROTECTED]>
Thanks,
Jeremy
