On Tue, 7 Dec 2010, Florescu, Dan Alexandru wrote:
Received: from localhost (localhost [127.0.0.1]) by mx.company.com (Postfix) with
ESMTP id 8BCA320EC86 for <mym...@company.com>;
To: <somefakem...@somedomain.com>
My question is: shouldn't there be a rule to verify that the mail
specified at "To:" header actually corresponds to the one at "Received:
[...] for <>"?
This would be a very effective spam catching rule.
No, it wouldn't. In fact, it would be spectacularly poor. This is the
difference between the envelope header and the message header (look those
terms up for details).
Checking that those match would hit on some spam, but it would also hit on
all mail having more than one recipient, or CCs, or blind CCs.
--
John Hardin KA7OHZ http://www.impsec.org/~jhardin/
jhar...@impsec.org FALaholic #11174 pgpk -a jhar...@impsec.org
key: 0xB8732E79 -- 2D8C 34F4 6411 F507 136C AF76 D822 E6E6 B873 2E79
-----------------------------------------------------------------------
Of the twenty-two civilizations that have appeared in history,
nineteen of them collapsed when they reached the moral state the
United States is in now. -- Arnold Toynbee
-----------------------------------------------------------------------
8 days until Bill of Rights day
