Very Computer

I did a quick scan of my email and found that most of my spam traffic has one
thing in common thus :

X-MIMEOLE: Produced By Microsoft MimeOLE V6.00.2800.1106
X-Mailer: Microsoft Outlook Express 5.00.2615.200
X-Mailer: Microsoft Outlook Express 5.00.2919.6700
X-Mailer: Microsoft Outlook Express 5.00.2919.6900 DM
X-Mailer: Microsoft Outlook Express 5.00.83498341
X-Mailer: Microsoft Outlook Express 5.50.4807.1700
X-Mailer: Microsoft Outlook Express 6.00.2462.0000
X-Mailer: Microsoft Outlook Express 6.00.2526.0000
X-Mailer: Microsoft Outlook Express 6.00.2600.0000
X-Mailer: Microsoft Outlook Express 6.00.2720.3000
X-Mailer: Microsoft Outlook Express 6.00.2800.1158
X-Mailer: Microsoft Outlook Express Macintosh Edition - 4.5 (0410)
X-Mailer: Microsoft Outlook IMO, Build 9.0.2416 (9.0.2910.0)
X-Mailer: Microsoft Outlook, Build 10.0.2616
X-Mailer: Microsoft Outlook, Build 10.0.2627
X-MimeOLE: Produced By Microsoft Exchange V6.0.6880.0
X-MimeOLE: Produced By Microsoft MimeOLE V5.00.2919.6700
X-MimeOLE: Produced By Microsoft MimeOLE V5.50.4807.1700
X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2462.0000
X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2800.1165

So is it possible to easily build a version of sendmail that will reject
inbound traffic that has such an identifier?  I realize that this is not
really a Solaris question but rather an admin question.  I am merely trying to
find a way to stop the flow of spam.  I figure that a build of sendmail that
blocks such traffic would be popular.

Dennis

(Whether that is a good idea, is a different question).

--
Rich Teer, SCNA, SCSA

President,
Rite Online Inc.

Voice: +1 (250) 979-1638
URL: http://www.rite-online.net

Quote:> In principle its doable (perhaps even quite easily, using
> header check rule sets).  The only gotcha is that you'll
> also get a lot of positives, given the uneducated massess'
> propensity for using these broken email clients in the
> first place...

So in my case, it would work wonderfully.

I also presume that it would be possible to fire a * email back at the
positive matches along the lines of :

  "You have been found to be running software that propogates virus
   traffic and spam. You email has been rejected.  Please use a real
   email client.  The real world suggests Netscape, Evolution, ... "

Dennis

Quote:

>I did a quick scan of my email and found that most of my spam traffic has one
>thing in common thus :

> [DELETED for space]

>So is it possible to easily build a version of sendmail that will reject
>inbound traffic that has such an identifier?  I realize that this is not
>really a Solaris question but rather an admin question.  I am merely trying to
>find a way to stop the flow of spam.  I figure that a build of sendmail that
>blocks such traffic would be popular.

I use it (and SpamAssasin and a few other plug-ins) to great effect. After
installing MIMEDefang w/ SpamAssassin, I went from almost 2,000 SPAMs a week
down to less than 100. Of that number, my Thunderbird takes care of all but
few per day.

-tom