From owner-freebsd-chat Tue Dec 10 23:57:54 2002 Delivered-To: freebsd-chat@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 0D52237B401 for ; Tue, 10 Dec 2002 23:57:52 -0800 (PST) Received: from post-20.mail.nl.demon.net (post-20.mail.nl.demon.net [194.159.73.1]) by mx1.FreeBSD.org (Postfix) with ESMTP id ED3B643ED1 for ; Tue, 10 Dec 2002 23:57:50 -0800 (PST) (envelope-from cls@raggedclown.net) Received: from [212.238.197.102] (helo=mailhost.raggedclown.net) by post-20.mail.nl.demon.net with esmtp (Exim 3.36 #1) id 18M1kb-000JxD-00 for FreeBSD-chat@FreeBSD.ORG; Wed, 11 Dec 2002 07:57:49 +0000 Received: from localhost (localhost [127.0.0.1]) by mailhost.raggedclown.net (Ragged Clown Mail Gateway [dawn]) with ESMTP id A9FF5F11 for ; Wed, 11 Dec 2002 08:57:48 +0100 (CET) Received: from willow.raggedclown.net (willow.raggedclown.intra [192.168.1.10]) by mailhost.raggedclown.net (Ragged Clown Mail Gateway [dawn]) with ESMTP id 8E440CE3 for ; Wed, 11 Dec 2002 08:57:37 +0100 (CET) Received: by willow.raggedclown.net (Ragged Clown Host [willow], from userid 1009) id DAB09225CC; Wed, 11 Dec 2002 08:57:37 +0100 (CET) Date: Wed, 11 Dec 2002 08:57:37 +0100 From: Cliff Sarginson To: FreeBSD Chat Subject: Re: Spam decisions Message-ID: <20021211075737.GD75482@raggedclown.net> References: <20021210073508.GB73284@raggedclown.net> <1649916519.20021210235811@dds.nl> <20021211033128.GA9854@HAL9000.homeunix.com> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <20021211033128.GA9854@HAL9000.homeunix.com> User-Agent: Mutt/1.5.1i X-Virus-Scanned: by AMaViS 0.3.12pre8 Sender: owner-freebsd-chat@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org On Tue, Dec 10, 2002 at 07:31:28PM -0800, David Schultz wrote: > Thus spake Alex : > > > Mmm..I finally put a blacklist entry on all domains ending in ".tw". > > > This is something I swore off doing, but for months now I have been > > > generating unknown user messages for mail from .tw registered domains. > > > > > So I have decided to REJECT at receipt all messages in said domains. > > > So any genuine FreebSD users in Taiwan (for so I take .tw to be) ... > > > sorry. > > > > > > Would it be an (posible) idee to put genuine FreeBSD users on a white > > list? > It's a public mailing list, that would be impossible...and how would you do it anyway ? What is a genuine FreeBSD user ? A lot of the mail comes from potential users, or from people sending mail using Outlook Express. You cannot eliminate them on that ! > I whitelist mailing list mail and off-list responses thereto, when > I can identify it. The idea that ``I don't know anyone in country > X, so mail from there must be SPAM'' breaks down for mailing > lists. Yes, which is one of the reasons why I was so reluctant to do it. I actually think that in general, if a whitelist is > required at all, there must be something wrong with the model. > That is probably the case, in fact, but the scheme seems to work > well in practice. That doesn't mean that people use SpamAssassin > are wrong, but they probably have different goals. My criteria > are (a) be conservative (no false positives), and (b) try to > minimize the time spent dealing with SPAM and related gizmos given > the first constraint. > Yes, I agree with that. False positives do occur. At least one incarnation of spamassasin seemed to give high marks to any bracketed text in the Subject line (regexp fault I suspect)...regarding it as a unique ID number. I have adjusted some of my scoring..which is a nice facility (I am not easily offended by people swearing :). I seem to remember it also scored points for verp-munged mailing list headers, which is a bit unfortunate since several technical mailing lists I have been on use them, although since these are usually subscriber-only they don't usually garner enough points to reach the threshold. I have written a script that extracts addresses/Subject out of my Spam folder, I quickly eyeball it and delete the genuine ones from the list. The output file is something that can be slotted straight into my mail server's postfix header_checks file. This saves a lot of time. -- Regards Cliff Sarginson The Netherlands [ This mail has been checked as virus-free ] To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-chat" in the body of the message