How do I whitelist this notice from HP?

Vernon Schryver
Wed Apr 3 18:15:39 UTC 2002

> From: Gary Mills <mills@cc.UManitoba.CA>

> This message would have been rejected by dccm if I had been running
> it with rejection enabled.  The envelope sender is
> `'.  The SMTP peer is
> `'.  Both of those look variable to me.
> Is is possible to whitelist such messages?
> ...

> Return-Path: <>
> X-Sieve: cmu-sieve 2.0
> Received: from ( [])
> 	by (8.12.2/8.12.2) with ESMTP id g32LK1Su021813
> 	for <>; Tue, 2 Apr 2002 15:20:02 -0600 (CST)
> Received: from ( [])
> 	by (8.8.8/) with ESMTP id NAA04293
> 	for <>; Tue, 2 Apr 2002 13:21:04 -0800 (PST)
> Message-Id: <>
> DATE: Tue, 02 Apr 2002 13:19:53 PST
> FROM: Hewlett-Packard <>
> SUBJECT: Safety Recall Notice
> TO: "Ken De Cruyenaere" <kdc@cc.UManitoba.CA>
> X-DCC-UofM-Metrics: electra 1032; Body=1 Fuz1=240 Fuz2=241

At my DCC server, dccproc -QC of that message says
    X-DCC--Metrics: 101; Body=0 Fuz1=366 Fuz2=367
which shows that it is another 140 more copies of the mssage have been
reported since it was seen by UofM.  That is more people than I would
have guessed own those printers among current DCC users.

Whitelisting that source by envelope or header From value looks hard,
because those headers suggest they use unique source addresses for
each bulk mail campaign.  Instead I would try to find the IP addresses
of Yesmail's sending systems.  Perhaps this web page is accurate:

I had to refresh recollections triggered by "yesmail," ","
and "" with
and suggested my personal spam logs,

Changing "sightings" to "email" in those Goggle URLS gets plenty
of commentary.

Without intending to suggest that anyone do the same, I think I'll
take my chances on being electrocuted.

Vernon Schryver

More information about the DCC mailing list

Contact by mail or use the form.