I would like to Symantec think about this. (for NIS or 360)

I and a lot of people receive a lot of e-mail (Spam, Junk) that pass over all actual rules.

These e-mails are using regular addresses from known people, like your e-mail or friends e-mails, but this e-mails are not from their.

They use this feature, only see on the header:

Return-Path: <email1(at)email1(dot)com>

...

From: "Friend known name" <fake(at)email(dot)com> *****here is where all e-mail rules works

...

Reply-To: email2(at)email2(dot)com

....

Subject: some text    *****here some e-mail filters works

My suggestion is:

Some kind of filter that I can set, to all header scam, looking for this fields, blocking some addresses.

I use a lot the blocked list and configure a lot of e-mails rules on Windows Live Email, but no one are blocking this situation.

Thank you.

(sorry about my English)