SpamAssassin Rule: FH_HELO_AMOST_IP

Standard description: Helo is almost an IP addr.

Explanation

An untrusted relay used a hostname (FQDN) as a HELO argument during a SMTP transaction that contains a series of numbers that might represent an IPv4 address.

One likely reason for this is that the hostname is taken from the reverse DNS entry used to indicate a dynamically allocated address (see also Rules/HELO_DYNAMIC_DHCP).

Further Info

The default scores for this rule can be found in the online list of tests.


CategoryRule

Rules/FH_HELO_ALMOST_IP (last edited 2009-09-20 23:16:15 by localhost)