> Yeah, I know about the SPF checks... But I meant does SA currently do
> anything with digital signatures to verify that the sender really is
> the sender & apply a -ve score.
Other than the SPF type header checks I don't believe so. Certainly not any
pgp blocks or the like in the body of the mail.
This probably wouldn't be too hard to do in a plugin if someone wanted to.
Of course, like SPF, this really isn't an anti-spam sort of thing. All we
would know is that the spammer bothered to get his own pgp key or the like.
(That said, a lot of spammers are stupid, so giving positive points to
failed checks might be useful.)
Loren
