On 3/26/10 10:41 AM, Dennis B. Hopp wrote:
I received the following e-mail
http://pastebin.com/JXr9buxi
It had a total score of 4.973 (blocked at 5). Among other rules it hit:
KHOP_RCVD_TRUST=-1.75,RCVD_IN_DNSWL_MED=-0.5,SPF_PASS=-0.001
is that an old rule? i just checked SA updates, and I don't see that
rule in current SA 3.3.1
so, who is KHOP? I looked in rule sets and don't know them. were these
rules inherited form some outside trusted source?
--
Michael Scheidell, CTO
Phone: 561-999-5000, x 1259
> *| *SECNAP Network Security Corporation
* Certified SNORT Integrator
* 2008-9 Hot Company Award Winner, World Executive Alliance
* Five-Star Partner Program 2009, VARBusiness
* Best Anti-Spam Product 2008, Network Products Guide
* King of Spam Filters, SC Magazine 2008
______________________________________________________________________
This email has been scanned and certified safe by SpammerTrap(r).
For Information please see http://www.secnap.com/products/spammertrap/
______________________________________________________________________
