Denis Beauchemin Denis.Beauchemin at
Thu Oct 31 14:24:32 GMT 2013


The phishing.bad.sites.conf is used to flag URLs in emails. It is not uncommon to use in emails nor should it be flagged as a phishing attempt.


-----Message d'origine-----
De : mailscanner-bounces at [mailto:mailscanner-bounces at] De la part de Barry Callahan
Envoyé : 31 octobre 2013 10:11
À : MailScanner discussion
Objet : Re: phishing.bad.sites.conf

Uhh... yes. Yes, it contains
It also contains

You should not be getting any legitimate emails from facebook originating from either of those machine names. The email should be coming from a address. And chances are, the machine handing it off  to your server will be

So, if you're getting email traffic claiming to come from I doubt it's legitimate.

#* Barry Callahan
#* Technologist
#* RJL Systems
#* phone: 1 586 790 - 0200 x112
#*        1 800 528 - 4513 x112
#* fax:   1 586 790 - 0205

On 10/31/2013 8:31 AM, Denis Beauchemin wrote:
> Hello,
> I just found out that the phishing.bad.sites.conf contains This file is kept up to date by /usr/sbin/update_bad_phishing_sites.
> Now who can remove from the master file? If nobody can I will have to stop the auto-update.
> Thanks.
> Denis

MailScanner mailing list
mailscanner at

Before posting, read

Support MailScanner development - buy the book off the website! 

More information about the MailScanner mailing list