Mike Cardwell wrote:
Ned Slider wrote:
I've also just recently enabled these lists in SA so am still in the
very early stages of testing. I initially did get one FP hit against
the whitelist (spam message sent through an ISP smtp server in the
whitelist)
Can you let us know what that IP is please? Then Marc can explain how it
managed to get on the whitelist. No ISP SMTP server should be in a
whitelist imho...
Sorry Marc/all, my mistake - checking back it wasn't an ISP but was spam
sent from a website contact form/page.
The address was:
Received: from smtp-out-56.livemail.co.uk (smtp-out-50.livemail.co.uk
[213.171.216.50])
$ nslookup 50.216.171.213.hostkarma.junkemailfilter.com
Non-authoritative answer:
Name: 50.216.171.213.hostkarma.junkemailfilter.com
Address: 127.0.1.1
Name: 50.216.171.213.hostkarma.junkemailfilter.com
Address: 127.0.0.1
I do regularly get webform spam for one particular site hosted with that
provider and have custom rules to catch them. So it is a FP hit against
the whitelist for me, but in somewhat unusual circumstances I guess.
Anyway, I'm not an overly big fan of DNSWLs so I shall score it at my
discretion or choose not to use it at all, but I do hope your black (and
brown) lists will prove highly successful :)
