On Thu, 5 Mar 1998, Professional Software Engineering wrote:
At 06:34 PM 3/5/98 -0700, Bill McClatchie wrote:
:0
* ^From:.*aol\.com
* ! ^Received:.*aol\.com
/dev/null
If its from AOL, it will definately pass this criteria. And the few
recent forged aol spams I've examined would fail this.
The received lines are trivial to forge as well.
I know. Re-read my comment though. :-) For whatever reason, right now
spammers don't seem to be attempting to add a received line indicating it
came from AOL when they forge the aol address.
Note though, you will lose mail from people who prefer to get their email
at AOL, and thus only use this address.
Both methods would likely fail this -- if you're not ON the AOL net, I
doubt you can actually use their servers (which are likely to be
proprietary and/or beyond their proxies - at last check AOL'ers still
aren't "on" the internet).
To be honest, I wouldn't despam mail from a place like AOL in this
fashion. Either I would to kill it all, or run anything not on my
whitelist through a scoring recipe.
--
It's not reality or how you perceive things that's important -- it's
what you're taking for it...