Hi -

I saw something earlier about some kind of fine-tuning of Spam Assassin to stop some false positives. I've seen a few legit AOL messages get stopped lately and to my untrained eye, it looks like it's getting dinged pretty hard for being a "fake" AOL DNS when it is definitely a legitimate one (64.12.136.161). See if I'm correct:

Received: (fqmail 28033 invoked from network); 10 Feb 2004 20:53:38 -0000
Received: from mx04.futurequest.net (69.5.6.175) by pt02.futurequest.net (69.5.6.173) with FQDP; 10 Feb 2004 20:53:38 -0000
Received: (qmail 17126 invoked from network); 10 Feb 2004 20:53:31 -0000
Received: from imo-m06.mx.aol.com ([64.12.136.161]) by mx04.futurequest.net ([69.5.6.175]) with ESMTP via TCP; 10 Feb 2004 20:53:31 -0000
Received: from Gmcdcpa@aol.com by imo-m06.mx.aol.com (mail_out_v36_r4.12.) id 2.1d3.1957681a (3310); Tue, 10 Feb 2004 15:53:24 -0500 (EST)
....
X-Mailer: 9.0 for Windows sub 5007
X-Spam-Flag: YES
X-Spam-Checker-Version: SpamAssassin 2.63 (2004-01-11)
X-Spam-Level: *****
X-Spam-Status: Yes, hits=5.7 required=5.0 tests=FAKE_HELO_AOL,HTML_30_40, HTML_MESSAGE,MIME_QP_LONG_LINE,NO_RDNS_DOTCOM_HELO,NO_REAL_NAME autolearn=no version=2.63
X-Spam-Report: * 0.3 NO_REAL_NAME From: does not include a real name * 0.8 HTML_30_40 BODY: Message is 30% to 40% HTML * 0.2 HTML_MESSAGE BODY: HTML included in message * 0.2 MIME_QP_LONG_LINE RAW: Quoted-printable line longer than 76 chars * 2.2 NO_RDNS_DOTCOM_HELO Host HELO'd as a big ISP, but had no rDNS * 1.9 FAKE_HELO_AOL Host HELO did not match rDNS: aol.com

There's a bug in SA, as reported in this thread:

http://www.aota.net/forums/showthread.php?postid=103165#post103165

Apparently no solution as of yet. :(

Randall

Thanks, man. I knew I'd seen something but I thought a fix was found.