You are viewing a plain text version of this content. The canonical link for it is here.

Posted to dev@spamassassin.apache.org by bu...@bugzilla.spamassassin.org on 2004/01/19 15:42:29 UTC

[Bug 2292] whitelist_from fooled by quotes

http://bugzilla.spamassassin.org/show_bug.cgi?id=2292





------- Additional Comments From tech2@i-is.com  2004-01-19 05:47 -------
As you have found, whitelist_from is insecure, if possible you should use 
whitelist_from_rcvd it is much more secure.

The check for whitelist_from is a simple regex.
The check for whitelist_from_rcvd includes headers and is much more difficult 
to spoof.



------- You are receiving this mail because: -------
You are the assignee for the bug, or are watching the assignee.