On Sat, 30 Aug 2003 23:49:40 +0000 Brian May <bam@debian.org> wrote: > 1. The modular design of SMTP agents like postfix do not allow > scanning of messages before the message has been accepted by the > MTA at the SMTP session. I think you would have to add hooks > into smtpd, but that is going to complicate the code. Well, that's postfix's problem. After years of hearing how modular is the superior method it is kind of ironic that a simple solution is complicated. > 2. All checks have to be automatic, and there is no chance of manual > review to ensure that the messages where geniune before bouncing it. Trust me, if SA scores it high enough do you really want to worry about it? Running SA-Exim here and with sensible defaults I've 550'd most spam and, after the Bayesian filtering caught up, most of the recent viruses. I am perfectly capable of of reviewing the messages as I have the option of saving them for review. I define the levels at which things get accepted, rejected or even teergrubed. So far my false positives have been exactly 0 for rejects as I allow a small window for grey area messages to get through for the user to manage. In that window exactly 2 messages were false-positives and they were/barely/ high enough to be marked as spam. This has been so effective I've been working on getting clamav hacked into Spamassassin so that future virus attacks can be avoided without the painful Bayesian ramp-up. -- Steve C. Lamb | I'm your priest, I'm your shrink, I'm your PGP Key: 8B6E99C5 | main connection to the switchboard of souls. -------------------------------+---------------------------------------------
Attachment:
pgpH3WmNwMyOf.pgp
Description: PGP signature