SA Bugzilla – Bug 5102
[Review] FORGED_HOTMAIL_RCVD false positive
Last modified: 2007-06-07 01:28:15 UTC
The Received: header checks in _check_for_forged_hotmail_received_headers() do not allow for legitimate email from Hotmail received by Exim (and perhaps other MTAs).
Created attachment 3697 [details] Example Received: headers
Created attachment 3698 [details] Proposed patch
Created attachment 3699 [details] better (less picky) regex
Created attachment 3738 [details] proposed patch (draconian regex) Also noticed this issue, but I created a fairly draconian regex instead. Hope this is fixed in the next release... --alex
Fix committed to trunk.
did we miss this in 3.2.0? drat :( might be worth backporting to 3.2.1 as well.
My bad - should have committed it ages ago
Fix committed to 3.2 branch
Tony -- hold on -- could you revert that change to 3.2? the 3.2 branch is now in R-T-C mode (although I haven't officially announced it yet), so we'll need to vote on the patch before it can be applied. Just revert r534510, attach it as a diff to this bug, and set the milestone to "3.2.1" for voting...
Reopen for 3.2.1 review
setting to 3.2.1. looks like you weren't in the "EditBugs" bugzilla group -- you should be able to set milestones now...
Looks good from here. Thanks for your help.
This looks ready for review and voting for 3.2.1 (This is not a vote)
This looks like it ought to already have two votes, from Tony and Justin, but I can't tell exactly which patch to vote on. Tony or Justin, can you make that clear? Then we can get it into 3.2.1.
(In reply to comment #14) > This looks like it ought to already have two votes, from Tony and Justin, but I > can't tell exactly which patch to vote on. Tony or Justin, can you make that > clear? Then we can get it into 3.2.1. I intended to merge this commit from the trunk to 3.2: http://svn.apache.org/viewvc/spamassassin/trunk/lib/Mail/SpamAssassin/Plugin/HeaderEval.pm? r1=495220&r2=534488
Created attachment 3971 [details] that change, as a patch against 3.2.0 here's the change as a patch attachment. Tony, that's the easiest way to do patch reviews, we find, since we can then (a) test it ourselves if we feel like it and (b) be sure that the change will still apply correctly against current head of the branch. my vote: +1
+1 Tony, normally the vote of the committer submitting the fix is implicit, but in this case Justin actually put together the patch file we are voting on so if you want to vote for this to bring us up to the required three votes, please do so.
+ if ($rcvd =~ /from (\S*\.)?hotmail.com \(\S+\.hotmail(?:\.msn)?\.com[ \)]/ && $ip) +1. Feel free to add a '?:' to eliminate the capture though.
> Feel free to add a '?:' to eliminate the capture though Put it up as a patch and I'll vote on again. That way it will be official and have two votes ready when Justin wakes up this morning (his time) and sees it.
Created attachment 3974 [details] "that change" without the unused capture
+1 on the new patch without the capture By the way I notice that it was committed to trunk already as r545055.
+1
Committed to 3.2 branch revision 545100.