On Tue, 13 Aug 2013 08:38:50 -0400 Alex wrote: > Hi, > > > Recently I got a pump-and-dump spam that got through because of a > > significant > > score amount being subtracted by matching the RP_MATCHES_RCVD rule. > > Many of us have reduced that rule to a very low score for this reason. > Too many legitimate mail servers lack a proper rDNS.
That's not the reason it fails, it requires rnds to match. It fails because a lot of spam has rdns that does match the "mail from" domain - particularly abused free email providers. I think this is a sign of a skewed corpus rather that a useful rule.
