Increse spam security, section 5, 15 |
  |
 Oct 26 2006, 05:03 AM
Post
#1
|
|
|
Member  Group: Members Posts: 20 Joined: 9-September 05 Member No.: 686  |
QUOTE("recommended") Configure server-wide Spamassassin pico /etc/mail/spamassassin/local.cf Add this: report_safe 0 required_score 12 # The default score for BAYES and SURBL is too low compare to my reject threshold(see section5) at 15 score BAYES_99 6.00 # Check here for the detail of the URIBL data sources # http://answers.google.com/answers/threadview?id=422251 score URIBL_SBL 4.50 score URIBL_AB_SURBL 6.50 score URIBL_OB_SURBL 4.50 score URIBL_SC_SURBL 6.00 score URIBL_WS_SURBL 4.50 score URIBL_PH_SURBL 6.00 # Enable server-wide Vipul's Razor in Spamassassin # Remove razor_config line if you want to disable Vipul's Razor razor_config /var/spool/mqueue/.razor/razor-agent.conf # Enable server-wide DCC in Spamassassin # Remove dcc_home line if you want to disable DCC dcc_home /var/dcc QUOTE("Information listed at section 5 @ 15") 5. Spam Protection Exiscan allow exim invoking SpamAssassin to obtain $spam_score and $spam_report. If you install all programs in the section1, scored will calculate from Spamassassin+SARE+Razor+DCC. Since the false positive rate with spam scanning is high compared to virus scanning, it is wise to implement a scheme with multiple spam thresholds with different actions. As my preferences, I set score at 15 for reject thresholds, 12 what do i have to change in order to get score at 15 for reject thresholds, 12 ? recently i have notice that many many spam mails are passing trhu and not being marked as is there anything else i could do aswell to increse the detection ? thanks in advance. |
 |
 
|
|
Oct 26 2006, 04:31 PM
Post
#2
|
|
|
Administrator Group: Admin Posts: 4,252 Joined: 13-June 03 Member No.: 1 |
You could reduce the reject theshold from 15 to 11 or whatever you want. But it increase the chance you reject the valid email.
Another way is increase the score for specific SA rules such as SURBL rules. score URIBL_SBL 4.50 score URIBL_AB_SURBL 6.50 score URIBL_OB_SURBL 4.50 score URIBL_SC_SURBL 6.00 score URIBL_WS_SURBL 4.50 score URIBL_PH_SURBL 6.00 You may increase it. But again it increase the chance you reject the valid email. |
|
|
|
|
Oct 27 2006, 08:48 PM
Post
#3
|
|
|
Member Group: Members Posts: 20 Joined: 9-September 05 Member No.: 686 |
QUOTE(pairote @ Oct 26 2006, 04:31 PM)  You could reduce the reject theshold from 15 to 11 or whatever you want. But it increase the chance you reject the valid email. Another way is increase the score for specific SA rules such as SURBL rules. score URIBL_SBL 4.50 score URIBL_AB_SURBL 6.50 score URIBL_OB_SURBL 4.50 score URIBL_SC_SURBL 6.00 score URIBL_WS_SURBL 4.50 score URIBL_PH_SURBL 6.00 You may increase it. But again it increase the chance you reject the valid email. what do you think of the idea of make a code to interact with exim and every email marked as spam or with a x score will receive a return e-mail if they are not spam they will see the e-mail open the confirmation page and then write the code of that confirmation page, after that the e-mail will be delivered. |
|
|
|
|
Oct 27 2006, 11:13 PM
Post
#4
|
|
|
Administrator Group: Admin Posts: 4,252 Joined: 13-June 03 Member No.: 1 |
No. As email senders are always fake. You server will be blocked from variuos RBL, and big guy such as AOL, Hotmail, and etc.
|
|
|
|
|
Oct 28 2006, 09:53 AM
Post
#5
|
|
|
Member Group: Members Posts: 20 Joined: 9-September 05 Member No.: 686 |
QUOTE(pairote @ Oct 27 2006, 11:13 PM) No. As email senders are always fake. You server will be blocked from variuos RBL, and big guy such as AOL, Hotmail, and etc. well i am testing a perl code that verify if the e-mail is good or not and so far i havent receive any single spam into it plus the spam config from here. it trys a helo, check the mx then deny or not so far every e-mail i tested aswell worked fine to detect if it was true or false and all the emails were queued fine for delivery. CPAN module: Mail::VRFY |
|
|
|
|
Oct 28 2006, 06:23 PM
Post
#6
|
|
|
Administrator Group: Admin Posts: 4,252 Joined: 13-June 03 Member No.: 1 |
Valid email doesn't mean it is not faked. It will worsen if your auto email sent to innocent people. That means you are spamming to prevent spam mail. It doesn't right logic.
|
|
|
|
|
Oct 29 2006, 03:25 AM
Post
#7
|
|
|
Member Group: Members Posts: 20 Joined: 9-September 05 Member No.: 686 |
QUOTE(pairote @ Oct 28 2006, 06:23 PM) Valid email doesn't mean it is not faked. It will worsen if your auto email sent to innocent people. That means you are spamming to prevent spam mail. It doesn't right logic. i see your point on that, but if u just use it to verify, i think it did be a great tool against those random letter email such as "asjdhkad@somedomain.com", "ahsdenk@somedomain.com" and so on. Since some of those passed trhu my exim i was using this code to check it and store all the invalid e-mails so far none passed. |
|
|
|
|
Oct 30 2006, 10:53 AM
Post
#8
|
|
|
Administrator Group: Admin Posts: 4,252 Joined: 13-June 03 Member No.: 1 |
The only way to fix those email pattern is setting the default email for that domain to :fail:.
|
|
|
|
|
| Lo-Fi Version | Time is now: 3rd September 2010 - 12:49 AM |