On Sat, 30 Aug 2003 23:49:40 +0000
Brian May <bam@debian.org> wrote:
> 1. The modular design of SMTP agents like postfix do not allow
> scanning of messages before the message has been accepted by the
> MTA at the SMTP session. I think you would have to add hooks
> into smtpd, but that is going to complicate the code.
Well, that's postfix's problem. After years of hearing how modular is the
superior method it is kind of ironic that a simple solution is complicated.
> 2. All checks have to be automatic, and there is no chance of manual
> review to ensure that the messages where geniune before bouncing it.
Trust me, if SA scores it high enough do you really want to worry
about it? Running SA-Exim here and with sensible defaults I've 550'd most
spam and, after the Bayesian filtering caught up, most of the recent viruses.
I am perfectly capable of of reviewing the messages as I have the option of
saving them for review. I define the levels at which things get accepted,
rejected or even teergrubed. So far my false positives have been exactly 0 for
rejects as I allow a small window for grey area messages to get through for
the user to manage. In that window exactly 2 messages were false-positives
and they were/barely/ high enough to be marked as spam. This has been so
effective I've been working on getting clamav hacked into Spamassassin so that
future virus attacks can be avoided without the painful Bayesian ramp-up.
--
Steve C. Lamb | I'm your priest, I'm your shrink, I'm your
PGP Key: 8B6E99C5 | main connection to the switchboard of souls.
-------------------------------+---------------------------------------------
Attachment:
pgpH3WmNwMyOf.pgp
Description: PGP signature