[NCLUG] SpamAssassin Testimonials?
Michael Milligan
milli at acmeps.com
Thu Jul 10 21:12:51 MDT 2003
Bill Thorson wrote:
>
> The very first day I ran it a message from my on-line broker about a
> stop-sell
> being activated and executed was filtered out as spam. It's not as
> rare as
> you might guess.
Ouch. Yes, I remember it being a bit of a pain the first month, putting
in whitelist additions and making some minor scoring adjustments (e.g.,
setting MICROSOFT_EXECUTABLE to 10.00 along with setting report_safe to
2 to "de-claw" messages to be type text/plain), but it's still very rare
for me anymore. The most recent default whitelist is pretty good, much
better than when I got started. But for just such occasions, I still
file them in an out of the way place, not just discard or bounce them.
I actually find it quite interesting to see what the spammers are doing
with headers and body obfuscation. It's amazing how full of bogus tags
some HTML spam is these days to try to get past string-matching body checks.
jbass at dmsd.com wrote:
>
> Probably the most common case I've seen in the last year are Ebay seller
> responses which include html mail. This single class can be frustrating.
>
Interesting, I haven't had that problem. But then again all the ones
I've had come in from Paypal, so far, and paypal.com is in the default
whitelist.
Regards,
Mike
PS: Not to get too far off topic, but I've noticed a couple of social
engineering attacks against Paypal and Ebay recently, claiming they have
incorrect billing information and try to send you to their evil place
like http://paypal.someotherdomain.com or http://www.ebayupdate.info.
Watch out!
--
Michael Milligan -- Free Agent -- milli at acmeps.com
More information about the NCLUG
mailing list