On Thursday, October 14, 2004, 7:59:36 AM, Rob McEwen wrote:
RE: fraud.rhs.mailpolice.com phishing list
While I'm on the topic of mailpolice.com, has the "fraud.rhs.mailpolice.com" phishing list been integrated into SURBL yet? What was the result of this testing? Is this integration automated?
I've been waiting to hear back from more people about their own testing before incorporating it into ph.surbl.org.
It's easy enough to do, but we'd like more people to check the data for false positives against their own mail, test corpora, etc.
Has anyone else given this a try? If not will you please? __
[Bill Landry showed us how:]
This is a list that MailPolice hosts and I have been running it for a few hours and it has already flagged some phish and fraud e-mails. Here is some info about the list: http://rhs.mailpolice.com/#rhsfraud
This is my configuration for SA 2.64 with the SpamCopURI plug-in:
uri MP_URI_RBL eval:check_spamcop_uri_rbl('fraud.rhs.mailpolice.com','127.0.0.2') describe MP_URI_RBL URI's domain appears in MailPolice fraud list tflags MP_URI_RBL net score MP_URI_RBL 2.0
And for SA 3.0 with the URIDNSBL plug-in:
urirhsbl URIBL_MP fraud.rhs.mailpolice.com. A header URIBL_MP eval:check_uridnsbl('URIBL_MP') describe URIBL_MP URI's domain appears in MailPolice fraud list tflags URIBL_MP net score URIBL_MP 2.0
Bill __
Jeff C. -- "If it appears in hams, then don't list it."