We're now /dev/null-ing our flood of Sobig.F's, but we're still getting a
lot of silly "you may be infected" auto-responses (of course, we're not
infected, the worm is forging the sender address, as a simple rDNS on
the sending IP would demonstrate).
Does anyone happen to already have a set of recipes to catch these?
Sent by Declude, NAV for Exchange, RAV, etc. etc. ...
_______________________________________________
procmail mailing list
procmail(_at_)lists(_dot_)RWTH-Aachen(_dot_)DE
http://MailMan.RWTH-Aachen.DE/mailman/listinfo/procmail