Most likely, Johnny Spammer monitoring this list will just add a FAKE header to take advantage of such a rule.
Matt Kettler wrote: > Matus UHLAR - fantomas wrote: > >> On 13.07.07 17:04, arni wrote: >> >> >>> From large providers i sometimes recieve messages through encrypted >>> smtp, the header looks smth like this (qmail): >>> >>> ... with (AES256-SHA encrypted) SMTP; ... >>> >>> >>> Would it be a good idea to give a minimal negative score on this -0.1 or >>> -0.2 if this happens on the last hop? - It proves that the sending smtp >>> server is very protocol sane, which spambots are usually not. >>> >>> >> it just proves that the mail was sent through sane server, but there could >> be spambod behind it. >> >> -0.1 and -0.2 is very small numbers. Do you encounter any case where that >> would help? >> >> >> > Autolearning. >
