sa-exim
2009-01-12 06:10:18 UTC
I just received an email from ***@hookedonmicrosoft.com
with -100 USER_IN_WHITELIST
But I do not have an awl and my whitelist does not have this person in it.
How can this be?
X-Spam-Score -86.4 (---------------------------------------------------)
Spam detection software, running on the system
"hosting.wecanhost4u.com", has identified this incoming email as
possible spam. The original message has been attached to this so you
can view it (if it isn't spam) or label similar future email. If you
have any questions, see postmaster for details. Content preview:
[...] Content analysis details: (-86.4 points, 5.6 required)
pts rule name description ---- ----------------------
-------------------------------------------------- -100
USER_IN_WHITELIST From: address is in the user's white-list
3.5 BAYES_99 BODY: Bayesian spam probability is 99 to
100% [score: 0.9926]
0.0 FH_HOST_EQ_VERIZON_P Host is pool-.+verizon.net
2.6 FH_HELO_EQ_D_D_D_D Helo is d-d-d-d
2.6 HELO_DYNAMIC_IPADDR Relay HELO'd using suspicious hostname (IP
addr 1) 3.0 BOTNET Relay might be a spambot or
virusbot
[botnet0.7,ip=68.238.67.203,hostname=pool-68-238-67-203.lax.dsl-w.verizon.net,maildomain=hookedonmicrosoft.com,baddns,client,ipinhostname,clientwords]
1.8 BOTNET_IPINHOSTNAME Hostname contains its own IP address
[botnet_ipinhosntame,ip=68.238.67.203,rdns=pool-68-238-67-203.lax.dsl-w.verizon.net]
0.1 RDNS_DYNAMIC Delivered to trusted network by host with
dynamic-looking rDNS
with -100 USER_IN_WHITELIST
But I do not have an awl and my whitelist does not have this person in it.
How can this be?
X-Spam-Score -86.4 (---------------------------------------------------)
Spam detection software, running on the system
"hosting.wecanhost4u.com", has identified this incoming email as
possible spam. The original message has been attached to this so you
can view it (if it isn't spam) or label similar future email. If you
have any questions, see postmaster for details. Content preview:
[...] Content analysis details: (-86.4 points, 5.6 required)
pts rule name description ---- ----------------------
-------------------------------------------------- -100
USER_IN_WHITELIST From: address is in the user's white-list
3.5 BAYES_99 BODY: Bayesian spam probability is 99 to
100% [score: 0.9926]
0.0 FH_HOST_EQ_VERIZON_P Host is pool-.+verizon.net
2.6 FH_HELO_EQ_D_D_D_D Helo is d-d-d-d
2.6 HELO_DYNAMIC_IPADDR Relay HELO'd using suspicious hostname (IP
addr 1) 3.0 BOTNET Relay might be a spambot or
virusbot
[botnet0.7,ip=68.238.67.203,hostname=pool-68-238-67-203.lax.dsl-w.verizon.net,maildomain=hookedonmicrosoft.com,baddns,client,ipinhostname,clientwords]
1.8 BOTNET_IPINHOSTNAME Hostname contains its own IP address
[botnet_ipinhosntame,ip=68.238.67.203,rdns=pool-68-238-67-203.lax.dsl-w.verizon.net]
0.1 RDNS_DYNAMIC Delivered to trusted network by host with
dynamic-looking rDNS