Начал приходить спам с такими заголовками (после приёма ексченджем):Received: from mail.domain.ru (10.1.xxx.xxx) by exchange.local.RU (10.1.xxx.yyy)
with Microsoft SMTP Server id 8.3.83.0; Tue, 24 May 2011 07:43:59 +0400
Received: from mail.domain.ru (localhost [127.0.0.1]) by mail.domain.ru
(Postfix) with ESMTP id 230FE17037; Tue, 24 May 2011 07:43:57 +0400 (MSD)
Received: by mail.domain.ru (Postfix, from userid 3001) id 5B3E317036; Tue,
24 May 2011 07:43:56 +0400 (MSD)
X-Spam-Flag: YES
X-Spam-Checker-Version: SpamAssassin 3.2.5 (2008-06-10) on smtp-proxy.local.ru
X-Spam-Level: ********
X-Spam-Status: Yes, score=8.8 required=5.0 tests=BAYES_99,FH_FROMEML_NOTLD,
HEAD_LONG,HTML_MESSAGE,RDNS_NONE autolearn=no version=3.2.5
X-Spam-Report: * 3.5 BAYES_99 BODY: Bayesian spam probability is 99 to 100%
* [score: 1.0000]
* 2.7 FH_FROMEML_NOTLD E-mail address doesn't have TLD (.com, etc.)
* 2.5 HEAD_LONG Message headers are very long
* 0.0 HTML_MESSAGE BODY: HTML included in message
* 0.1 RDNS_NONE Delivered to trusted network by a host with no rDNS
Received: from [123.17.209.51] (unknown [123.17.209.51]) by mail.domain.ru
(Postfix) with ESMTP id F041317033; Tue, 24 May 2011 07:43:48 +0400 (MSD)
Subject: ****SPAM**** =?koi8-r?B?0kDT09nMy8k=?=
From: <">>>>>>>>>>"@mail.domain.ru>
To: <user1@domain.ru>, <user2@domain.ru>
Date: Mon, 23 May 2011 20:44:25 -0700
Message-ID: <23382703.20110523204425@dorodnikov.ru>
MIME-Version: 1.0
Content-Type: multipart/alternative;
boundary="----=_NextPart_000_0025_01C510PE.J7PYFYO0"
X-Priority: 3 (Normal)
X-Mailer: MyBB mailer
X-Spam-Prev-Subject: =?koi8-r?B?0kDT09nMy8k=?=
X-Virus-Scanned: ClamAV using ClamSMTP
Return-Path: renovator@dorodnikov.ru
X-MS-Exchange-Organization-SCL: 9
Валится естественно с разных доменов. Хотелось бы зафильтровать этот спам в header_checks по полю
From: <">>>>>>>>>>"@mail.domain.ru>
пытаюсь делать так:
/^From:.*mail.domain.ru/ REJECT
/^From:.*\"(>>)*\"/ REJECT
не то не то не срабатывает.
Вариант для распечатки
