From: "jdow" <jdow@earthlink.net>
To: "Gerhard Mack" <gmack@innerfire.net>, "Krzysztof Halasa" <khc@pm.waw.pl>
Cc: "Bernd Petrovitsch" <bernd@firmix.at>, <davids@webmaster.com>,
<linux-kernel@vger.kernel.org>
Subject: Re: VGER does gradual SPF activation (FAQ matter)
Date: Mon, 12 Jun 2006 11:46:53 -0700 [thread overview]
Message-ID: <01bb01c68e50$93753de0$0225a8c0@Wednesday> (raw)
In-Reply-To: m38xo244wz.fsf@defiant.localdomain
From: "Krzysztof Halasa" <khc@pm.waw.pl>
> Gerhard Mack <gmack@innerfire.net> writes:
>
>> Look at it from a mail admin's perspective. The bounces are now going
>> nowhere instead of some poor user's mailbox. You have just cut the damage
>> in half.
>
> If people doing SPF configured their servers to reject obviously
> bad messages before the SMTP transaction is completed (rather than
> generating a bounce later) it would IMHO do much more good.
Krzysztof, the point here is that experience with active spam
filtering indicates that there is no such thing as "obviously bad
messages" that will not catch some good messages in its broad
brush. It will also let some not quite so obvious bad messages
through. SPF has ONE "fail" mode which is relatively good. Aside
from that it is as close to worthless for filtering spam as
anything else. It's a hint and nothing more.
SPF as a part of a fully configured anti-spam system has some use.
SPF used ALONE is as bad as SORBS used alone. You will suffer a
false alarm rate sufficient that most people would consider it quite
unacceptable.
Filtering on the basis of SPF records is not a technique that would
prove acceptable or practical for LKML. Nor will it materially stop
spam from determined spammers. The SPF record vouches for the email.
Who vouches for the SPF record?
Besides, I rather suspect everybody on this list is in a position
to and capable of setting up a decent spam filter for themselves.
I'm certainly not at the level of expertise of many or most of the
people active on this list. Yet I have a spam filter setup that has
not let a single spam leak through on this list in the last month.
Nor has it misfired once in the last month. I am not particularly
aggressive maintaining my rule sets. I don't touch them unless
something new annoys me or a spam escapes detection. About two
months ago the LKML and other similar open list spam leakage finally
"reached me." I looked at prior attempts to filter LKML. Noted what
worked and what didn't. And I ended up hitting a simple strategy.
(Unfortunately it is awkward with SpamAssassin. But it works.) I
basically make the low Bayes scores score even lower or even negative
for these "problem lists". I make the high Bayes scores score even
higher for these "problem lists". After that and with my prior Bayes
training spam from this list and others like it has simply gone away.
I used my head for something other than a hat rack for 15 minutes
to solve the problem the right way. I found a suitable wrench to
repair the email plumbing rather than beating it with a hammer or
prying at it with a screwdriver. SPF seems to be at best a MUNGED
hex key.
{^_^} Joanne
next prev parent reply other threads:[~2006-06-12 18:47 UTC|newest]
Thread overview: 101+ messages / expand[flat|nested] mbox.gz Atom feed top
2006-06-10 22:27 VGER does gradual SPF activation (FAQ matter) Matti Aarnio
2006-06-10 23:06 ` David Woodhouse
2006-06-11 0:16 ` Rik van Riel
2006-06-11 0:44 ` David Woodhouse
2006-06-11 13:02 ` Theodore Tso
2006-06-11 13:55 ` Rik van Riel
2006-06-11 14:03 ` Avi Kivity
2006-06-12 8:47 ` Matthias Andree
2006-06-12 10:17 ` Neil Brown
2006-06-12 10:35 ` David Woodhouse
2006-06-12 11:07 ` Matthias Andree
2006-06-11 2:24 ` marty fouts
2006-06-11 2:41 ` jdow
2006-06-11 2:58 ` David Schwartz
2006-06-11 5:17 ` jdow
2006-06-12 8:18 ` Bernd Petrovitsch
2006-06-12 8:23 ` jdow
2006-06-12 8:31 ` Bernd Petrovitsch
2006-06-12 9:47 ` Neil Brown
2006-06-12 10:30 ` Alan Cox
2006-06-12 10:33 ` Neil Brown
2006-06-12 17:37 ` Gerhard Mack
2006-06-12 18:14 ` Krzysztof Halasa
2006-06-12 18:46 ` jdow [this message]
2006-06-12 19:16 ` Krzysztof Halasa
2006-06-12 21:51 ` Bernd Petrovitsch
2006-06-13 21:12 ` David Woodhouse
2006-06-12 9:53 ` Alan Cox
2006-06-12 10:01 ` Bernd Petrovitsch
2006-06-12 11:14 ` Matthias Andree
2006-06-12 10:58 ` Neil Brown
2006-06-12 11:22 ` Matthias Andree
2006-06-12 11:42 ` Kyle Moffett
2006-06-13 23:32 ` Scott Lockwood
2006-06-13 23:42 ` Kyle Moffett
2006-06-14 0:02 ` Neil Brown
2006-06-14 10:20 ` Matthias Andree
2006-06-16 3:53 ` Kyle Moffett
2006-06-12 8:27 ` Bernd Petrovitsch
2006-06-12 20:25 ` Horst von Brand
2006-06-12 21:10 ` Nick Warne
2006-06-12 22:06 ` Jesper Juhl
2006-06-12 22:12 ` Randy.Dunlap
2006-06-12 23:03 ` jdow
2006-06-13 3:00 ` Horst von Brand
2006-06-13 5:54 ` jdow
2006-06-13 8:36 ` Bernd Petrovitsch
2006-06-13 9:58 ` Marc Perkel
2006-06-13 13:28 ` Horst von Brand
2006-06-13 14:34 ` David Woodhouse
2006-06-13 9:05 ` David Woodhouse
2006-06-13 10:45 ` Matthias Andree
2006-06-13 12:24 ` David Woodhouse
2006-06-13 12:49 ` Matthias Andree
2006-06-13 13:10 ` David Woodhouse
2006-06-13 15:19 ` Marc Perkel
2006-06-13 15:57 ` Auke Kok
2006-06-13 19:54 ` David Woodhouse
2006-06-13 20:31 ` Lennart Sorensen
2006-06-13 20:48 ` David Woodhouse
2006-06-15 17:05 ` Keith Owens
2006-06-15 23:14 ` Wakko Warner
2006-06-13 0:11 ` Phil Oester
2006-06-13 0:26 ` David Miller
2006-06-13 4:18 ` Willy Tarreau
2006-06-13 15:17 ` Joel Jaeggli
2006-06-12 21:43 ` Bernd Petrovitsch
2006-06-13 3:05 ` Horst von Brand
2006-06-13 8:31 ` Bernd Petrovitsch
2006-06-13 10:50 ` Matthias Andree
2006-06-13 13:15 ` Justin Piszcz
2006-06-11 5:09 ` Neil Brown
2006-06-11 5:26 ` jdow
2006-06-11 6:12 ` Willy Tarreau
2006-06-11 16:02 ` Folkert van Heusden
2006-06-11 17:54 ` Lee Revell
2006-06-11 18:54 ` David Miller
2006-06-12 9:09 ` Matthias Andree
2006-06-12 11:32 ` Nikita Danilov
2006-06-12 14:52 ` Jeff Garzik
2006-06-12 20:00 ` David Miller
2006-06-12 22:29 ` Jesper Juhl
2006-06-12 22:48 ` David Miller
2006-06-12 22:57 ` Jesper Juhl
2006-06-13 3:54 ` VGER does gradual SPF activation (FAQ matter) - Alternative Marc Perkel
2006-06-13 4:51 ` David Miller
2006-06-13 13:41 ` VGER does gradual SPF activation (FAQ matter) Athanasius
2006-06-11 17:31 ` Marc Perkel
2006-06-11 18:50 ` Florian Weimer
[not found] ` <20060611072223.GA16150@flint.arm.linux.org.uk>
2006-06-12 8:32 ` Matti Aarnio
2006-06-12 8:40 ` Russell King
2006-06-12 9:57 ` Neil Brown
2006-06-12 15:55 ` Russell King
2006-06-12 20:06 ` Zwane Mwaikambo
2006-06-12 11:22 ` David Woodhouse
2006-06-12 15:41 ` Simon Oosthoek
2006-06-12 22:55 ` Matthias Andree
2006-06-13 17:41 ` Matti Aarnio
2006-06-12 9:05 ` Matthias Andree
2006-06-12 17:28 ` Matthew Frost
2006-06-13 0:12 ` David Woodhouse
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to='01bb01c68e50$93753de0$0225a8c0@Wednesday' \
--to=jdow@earthlink.net \
--cc=bernd@firmix.at \
--cc=davids@webmaster.com \
--cc=gmack@innerfire.net \
--cc=khc@pm.waw.pl \
--cc=linux-kernel@vger.kernel.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox