That message is either a fabrication or something from a messed up system.
There's no sign of an IP address (neither IPv4 nor IPv6) in it.
There are two identical 'Received:' headers which have '()' where
there should be at least the IP address of the incoming connection.
This indicates that the message has either been tampered with or is from a
postfix system that somebody has messed up the configuration.
On Mon, 30 May 2016, Shivram Krishnan wrote:
Hey guys,
I am testing spamassassin on a SPAM/HAM corpus of mails. Spamassassin is not
picking up an obvious
spam like in this case http://pastebin.com/MbNRNFWy .
I have followed the guidelines on
https://wiki.apache.org/spamassassin/ImproveAccuracy .
Let me know how to catch these type of Spams. It would be interesting to know
what your spamassassin
assigns the score for this spam.
spamassassin assigned this score -
Content analysis details: (3.9 points, -10.0 required)
pts rule name description
---- ---------------------- --------------------------------------------------
0.8 BAYES_50 BODY: Bayes spam probability is 40 to 60%
[score: 0.4292]
0.0 HTML_MESSAGE BODY: HTML included in message
0.7 MIME_HTML_ONLY BODY: Message only has text/html MIME parts
0.4 HTML_MIME_NO_HTML_TAG HTML-only message, but there is no HTML tag
0.0 UNPARSEABLE_RELAY Informational: message has unparseable relay lines
2.0 XPRIO Has X-Priority header
Notice that none of the other body tags are triggered.
Thanks,
Shivram
--
Dave Funk University of Iowa
<dbfunk (at) engineering.uiowa.edu> College of Engineering
319/335-5751 FAX: 319/384-0549 1256 Seamans Center
Sys_admin/Postmaster/cell_admin Iowa City, IA 52242-1527
#include <std_disclaimer.h>
Better is not better, 'standard' is better. B{
