I have upgraded to 5.100 and have noticed a more aggressive sapm filtering. I like this feature but have some issues with it.
I receive many emails from a mailing list, Asterisk to be exact, and the new filtering is tagging simple email with a single hyperlink in it with 6+ SPAM score. One of the highest scores I have noriced is a 2.2 because the reply to domain does not match the smtp server in which the email came from. Well duh, of course the email isn't coming from the same server domain as the FROM address. It is a listserv.
I am not using the verify sender option either. This is strictly through the SPAM feature.
Can someone point me to where i can get info on tweaking this new feature?? Or is it like most other things, it is set, and if you change the config manually all support is out the window?
Here are the headers:
Return-Path:
Received: from fw.ropeguru.com ([192.168.1.99] verified)
by ropeguru.com (CommuniGate Pro SMTP 4.2.6)
with ESMTP-TLS id 1030360 for asterisk@ropeguru.com; Mon, 20 Dec 2004 19:35:35 -0500
Received-SPF: none (fw.xxx.com: 69.16.xxx.xxx is neither permitted nor denied by domain of lists.digium.com) client-ip=69.16.xxx.xxx; envelope-from=asterisk-users-bounces@lists.digium.com; helo=lists.digium.com;
Received: from digium-69-16-138-164.phx1.puregig.net ([69.16.138.164] helo=lists.digium.com)
by fw.ropeguru.com with esmtp (Exim 4.43)
id 1CgXvh-0004Kx-59
for xxx@ropeguru.com; Mon, 20 Dec 2004 19:31:11 -0500
Received: from [69.16.138.164] (localhost [127.0.0.1])
by lists.digium.com (Postfix) with ESMTP
id 60DA22FD4F5; Mon, 20 Dec 2004 18:35:57 -0600 (CST)
X-Original-To: asterisk-users@lists.digium.com
Delivered-To: asterisk-users@lists.digium.com
Received: from psmtp.com (exprod5mx32.postini.com [64.18.0.187])
by lists.digium.com (Postfix) with SMTP id A0CAD2FC9DF
for ;
Mon, 20 Dec 2004 18:35:53 -0600 (CST)
Received: from source ([80.91.229.2]) by exprod5mx32.postini.com
([64.18.4.10]) with SMTP; Mon, 20 Dec 2004 18:35:57 CST
Received: from list by main.gmane.org with local (Exim 3.35 #1 (Debian))
id 1CgY0J-000305-00
for ; Tue, 21 Dec 2004 01:35:55 +0100
Received: from 61.194.94.123 ([61.194.94.123])
by main.gmane.org with esmtp (Gmexim 0.1 (Debian))
id 1AlnuQ-0007hv-00
for ; Tue, 21 Dec 2004 01:35:55 +0100
Received: from mick_hastings by 61.194.94.123 with local (Gmexim 0.1 (Debian))
id 1AlnuQ-0007hv-00
for ; Tue, 21 Dec 2004 01:35:55 +0100
X-Injected-Via-Gmane: http://gmane.org/
To: asterisk-users@lists.digium.com
From: "Mick Hastings"
Date: Tue, 21 Dec 2004 09:35:47 +0900
Lines: 19
Message-ID:
X-Complaints-To: usenet@sea.gmane.org
X-Gmane-NNTP-Posting-Host: 61.194.94.123
X-MSMail-Priority: Normal
X-Newsreader: Microsoft Outlook Express 6.00.2900.2180
X-RFC2646: Format=Flowed; Original
X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2900.2180
X-pstn-levels: (S: 0.62033/98.29762 )
X-pstn-settings: 1 (0.1500:0.1500) gt3 gt2 gt1
X-pstn-addresses: from [65/3]
X-BeenThere: asterisk-users@lists.digium.com
X-Mailman-Version: 2.1.5
Precedence: list
Reply-To: Asterisk Users Mailing List - Non-Commercial Discussion
List-Id: Asterisk Users Mailing List - Non-Commercial Discussion
List-Unsubscribe: ">http://lists.digium.com/mailman/listinfo/asterisk-users>,
List-Archive: ">http://lists.digium.com/pipermail/asterisk-users>
List-Post:
List-Help:
List-Subscribe: ">http://lists.digium.com/mailman/listinfo/asterisk-users>,
Sender: asterisk-users-bounces@lists.digium.com
Errors-To: asterisk-users-bounces@lists.digium.com
X-Spam-Score: 6.4 (++++++)
X-Spam-Report: 1.0 RCVD_BY_IP Received by mail server with no name
0.1 FORGED_RCVD_HELO Received: contains a forged HELO
2.0 RCVD_NUMERIC_HELO Received: contains an IP address used for HELO
2.2 FORGED_YAHOO_RCVD 'From' yahoo.com does not match 'Received' headers
1.2 PRIORITY_NO_NAME Message has priority, but no X-Mailer/User-Agent
X-Spam-Flag: YES (tagged as spam, score 6.4)
Subject: *SPAM* [Asterisk-Users] Patching the source?
This thread was automatically locked due to age.
