spamassassin-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From RW <rwmailli...@googlemail.com>
Subject Re: Spammer in white list aka USER_IN_DEF_SPF_WL
Date Thu, 02 May 2019 20:11:59 GMT
On Thu, 2 May 2019 03:15:13 +0000
David Jones wrote:

> On 5/1/19 6:04 PM, RW wrote:
> > On Wed, 1 May 2019 10:39:08 -0700 (MST)
> > jandev wrote:
> >   
> >> David,
> >>
> >> I tried to send the original email to the email address you
> >> requested. But your mail hoster blocks (554 5.7.1) my TLDs.  
> > 
> > I doesn't really matter, you posted a link to pastebin on the list.
> > 
> > It passed SPF with the envelope domain bounce.comm06.simpliv.com
> > which matches:
> > 
> > def_whitelist_auth *@*.simpliv.com
> >   
> 
> 129.41.222.236 has a senderscore.org score of 94 currently 

it was 84 in early April.


> and is
> listed in dnswl.org as score but do not block outright. 


That just means it's a known source of email and not a zombie or IP
address controlled by an outright spammer. The level of trust is
described as 'none', that's a lower level than some freemail servers.

The DKIM signing domain isn't listed at all  on dkimwl.


>  More importantly, it's [not] listed in Invaluement (IVM or IVM24):

The Invaluement lists are marketed as low-FP. There's a huge difference
between being good enough to stay out of Invaluement and being good
enough for whitelisting at the -15 point level. 


>  Every platform has the occassional bad customer that needs
> to be kicked off 

From it's website simpliv.com appears to be a company that markets
online training provided by third-party trainers. In that situation 
simpliv should be managing the lists and enforcing opt-in.





Mime
View raw message