(well, lots of them do, someone send blackberry a copy of the RFC's?)
one of our users keeps blocking emails from blackberry users due to this:
blackberry server does a 'helo 67.223.83.81' in violation of RFC's (when
it should at LEAST do a helo [67.223.83.81])
Spamassassin score (correctly) this as 'RCVD_NUMERIC_HELO' as it really
IS an invalid helo.
I have seen a lot of strange things blackberry does. including go for
the highest mx record FIRST (every time), when several lower mx record
servers are available and idle, strange DNS stuff, mashing and munging
of headers.
if this had been send to a system that checks RFC's carefully, and drops
ignorant servers on the floor it would not even have gotten in.
received:from 67.223.83.81 ([67.223.83.81]) by 2k3exchange.local
([192.168.1.3]) with Microsoft Exchange Server HTTP-DAV ; Fri, 20 Feb 2009
22:33:48 +0000
x-rim-org-msg-ref-id:1281710162
--
Michael Scheidell, CTO
Phone: 561-999-5000, x 1259
> *| *SECNAP Network Security Corporation
* Certified SNORT Integrator
* King of Spam Filters, SC Magazine 2008
* Information Security Award 2008, Info Security Products Guide
* CRN Magazine Top 40 Emerging Security Vendors
* Finalist 2009 Network Products Guide Hot Companies
_________________________________________________________________________
This email has been scanned and certified safe by SpammerTrap(r).
For Information please see http://www.secnap.com/products/spammertrap/
_________________________________________________________________________
