You are viewing a plain text version of this content. The canonical link for it is here.

Posted to users@spamassassin.apache.org by Ma...@hbinc.com on 2005/10/26 21:10:02 UTC

mail from @yahoo.com hitting DNS_FROM_RFC_ABUSE

Every message from yahoo.com is hitting DNS_FROM_RFC_ABUSE...

	$ dig yahoo.com.abuse.rfc-ignorant.org
	yahoo.com.abuse.rfc-ignorant.org. 3600 IN A     127.0.0.4

...on the basis of this evidence...

http://www.rfc-ignorant.org/tools/detail.php?domain=yahoo.com&submitted=1123294881&table=abuse

I don't know how convincing this evidence is, personally... what do y'all think?

The score for that test is low, so it's not a big deal:
	score DNS_FROM_RFC_ABUSE 0 0.479 0 0.200

But still, it's the principle of the thing...

-- 
Matthew.van.Eerde (at) hbinc.com               805.964.4554 x902
Hispanic Business Inc./HireDiversity.com       Software Engineer

Re: mail from @yahoo.com hitting DNS_FROM_RFC_ABUSE

Posted by Matt Kettler <mk...@evi-inc.com>.

Matthew.van.Eerde@hbinc.com wrote:
> Every message from yahoo.com is hitting DNS_FROM_RFC_ABUSE...
> 
> 	$ dig yahoo.com.abuse.rfc-ignorant.org
> 	yahoo.com.abuse.rfc-ignorant.org. 3600 IN A     127.0.0.4
> 
> ...on the basis of this evidence...
> 
> http://www.rfc-ignorant.org/tools/detail.php?domain=yahoo.com&submitted=1123294881&table=abuse
> 
> I don't know how convincing this evidence is, personally... what do y'all think?

I think it's *very* convincing..

After all, the whole point of abuse@<majorisp> is to accept abuse reports. If
you won't accept an abuse report on a phishing mail at your abuse address, your
abuse system is broken and thus RFC-ignorant.

Now I don't exactly think it's broken to "block phishing emails as a virus", as
Derek J. Balling claims in the evidence, but I DO think that your abuse address
needs to accept such reports.

Re: mail from @yahoo.com hitting DNS_FROM_RFC_ABUSE

Posted by jdow <jd...@earthlink.net>.

I saluted the flag.

{^_^}
----- Original Message ----- 
From: <Ma...@hbinc.com>


Every message from yahoo.com is hitting DNS_FROM_RFC_ABUSE...

$ dig yahoo.com.abuse.rfc-ignorant.org
yahoo.com.abuse.rfc-ignorant.org. 3600 IN A     127.0.0.4

...on the basis of this evidence...

http://www.rfc-ignorant.org/tools/detail.php?domain=yahoo.com&submitted=1123294881&table=abuse

I don't know how convincing this evidence is, personally... what do y'all 
think?

The score for that test is low, so it's not a big deal:
score DNS_FROM_RFC_ABUSE 0 0.479 0 0.200

But still, it's the principle of the thing...

-- 
Matthew.van.Eerde (at) hbinc.com               805.964.4554 x902
Hispanic Business Inc./HireDiversity.com       Software Engineer