Ignoring RFC1918 address space in numeric phishing

David Lee t.d.lee at durham.ac.uk
Tue Aug 22 10:54:48 IST 2006

On Tue, 22 Aug 2006, Julian Field wrote:

> Mike Jakubik wrote:
> > Does anybody know of a way to ignore the IANA private address space
> > when numeric phishing is on? I tried adding in the form of "172.16",
> > "172.16.*", "172.16.*.*" but none seem to work. I have an application
> > which sends out HTML emails which contain links to local webservers,
> > its hard to predict each servers IP address, but i know it will be a
> > private address. I think ignoring these by default is a safe bet for
> > most people.
> >
> Use a ruleset. They are documented well in the MAQ, the wiki and the
> book. Just use it to not do phishing checks when the message comes from
> one of your addresses.

Combining the two:
1. Mike's suggestion that it default to ignoring private IPs;
2. Julian's "use a ruleset" suggestion;

and also noting that dabbling in rulesets seems (understandably) a big and
somewhat scary hurdle for some new (and not so new!) MS end-users...

...how about making the default "out of the box" set-up ignore these IPs
(Mike's request) by using ruleset technology (Julian's suggestion), which
thereby gives nervous, first-time ruleset dabblers a real, concrete
example of rulesets already in use in their own (default) MS configuration
when they later have to create some other new ruleset elsewhere?


:  David Lee                                I.T. Service          :
:  Senior Systems Programmer                Computer Centre       :
:                                           Durham University     :
:  http://www.dur.ac.uk/t.d.lee/            South Road            :
:                                           Durham DH1 3LE        :
:  Phone: +44 191 334 2752                  U.K.                  :

More information about the MailScanner mailing list