You would think a company like Microsoft who want to help stop spam (by
2003) would at least follow some of the RFC's they require hotmail to
use.
Like, at least NOT FORGING their FQDN for HELO.
(and, is FORGED_HOTMAIL_RCVD2 obsolete by now?
Yes, this is an email I received, an auto'goaway' from an email sent to
[EMAIL PROTECTED]
It DID come from hotmail, so why is it 'forged_hotmail_rcvd'?
Microsoft Mail Internet Headers Version 2.0
FORGED_HOTMAIL_RCVD2=1.162, FORGED_RCVD_HELO=0.135, L_P0F_W=1.1,
SPF_PASS=-0.001, SUBJ_ALL_CAPS=0.997]
X-Amavis-OS-Fingerprint: Windows 2000 SP4, XP SP1+ (firewall!),
(distance 15,
link: ethernet/modem), [65.54.241.50]
Received: from BAY0-XMR-007.phx.gbl (bay0-xmr-007.hotmail.com
[65.54.241.50])
by 0.mail.spammertrap.net (Postfix) with ESMTP id 61D9A17017
for <[EMAIL PROTECTED]>; Mon, 1 Jan 2007 07:36:54 -0500
(EST)
Received: from mail pickup service by BAY0-XMR-007.phx.gbl with
Microsoft SMTPSVC;
Mon, 1 Jan 2007 04:37:29 -0800
To: [EMAIL PROTECTED]
From: MSN Hotmail <[EMAIL PROTECTED]>
Subject: [SPAM]FW: [SPAM]
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=iso-8859-1
Content-transfer-encoding: 8bit
References: <[EMAIL PROTECTED]>
Message-ID: <[EMAIL PROTECTED]>
X-OriginalArrivalTime: 01 Jan 2007 12:37:29.0677 (UTC)
FILETIME=[99CE57D0:01C72DA1]
Date: 1 Jan 2007 04:37:29 -0800
--
Michael Scheidell, CTO
SECNAP Network Security Corporation
Keep up to date with latest information on IT security: Real time
security alerts:
http://www.secnap.com/news
