|
Home > Archive > alt.os.linux > November 2002 > Spam Management - was (Re: Quotes from Angry Paul Lutus)
You are viewing an archived Text-only version of the thread.
To view this thread in it's original format and/or if you want to reply to
this thread please [click here]
| Author |
Spam Management - was (Re: Quotes from Angry Paul Lutus)
|
|
| Mark Smitka 2002-11-26, 9:24 pm |
| On 11/26/2002 09:43 PM, +Chiron+ wrote:
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
>
> On Tue, 26 Nov 2002 21:28:30 -0500, Mark Smitka tempted the fates in
> alt.os.linux by proclaiming the following:
>
>> Between Spamassassin, procmail and a few server-side
>> filters, it's not very often that spam actually makes it to my inbox.
>
> Spamassassin kicks major XXX, and I'm playing with some procmail recipies
> as we speak.
It (SA) really is *very* well done. In fact, I'm so confident with it
now, I use a procmail recipe to divert SA tagged messages to /dev/null.
I enabled verbose procmail logging, just in case, but so far, I've had
no problems of any kind with it.
> http://www.impsec.org/email-tools/p...l-security.html
>
> I'm now at the point that if a piece of spam actually makes it through I'm
> *happy* about it-
Yes, the challenge of killing the more clever invaders. 
> Now I get to report it to the razor servers. =)
> (Which, of course, is macro'ed to 'S' in my .muttrc)
I haven't tackled that piece yet, nor have I done any bouncing. I'm not
quite sure bouncing does any good, and there are many that believe it
can actuall result in more spam (I suppose depending on how it's
bounced/where from). I was just about to investigate the use of formail
and it's possible integration with procmail for some case-by-case
bouncing. Who knew spam management could *almost* be fun?
BTW, aplogies to all if I incorrectly changed the subject of this
follow-up, but I felt it drifted considerably from the original thread.
Mark
--
e-mail: mrksmtka@newsguy.com
| |
| Mark Smitka 2002-11-26, 10:24 pm |
| On 11/26/2002 10:20 PM, Mark Smitka wrote:
<snip>
> It (SA) really is *very* well done. In fact, I'm so confident with it
> now, I use a procmail recipe to divert SA tagged messages to /dev/null.
> I enabled verbose procmail logging, just in case, but so far, I've had
> no problems of any kind with it.
>
>> http://www.impsec.org/email-tools/p...l-security.html
>>
>> I'm now at the point that if a piece of spam actually makes it through
>> I'm *happy* about it-
>
>
> Yes, the challenge of killing the more clever invaders.
>
>> Now I get to report it to the razor servers. =)
>> (Which, of course, is macro'ed to 'S' in my .muttrc)
>
>
> I haven't tackled that piece yet, nor have I done any bouncing. I'm not
> quite sure bouncing does any good, and there are many that believe it
> can actuall result in more spam (I suppose depending on how it's
> bounced/where from). I was just about to investigate the use of formail
> and it's possible integration with procmail for some case-by-case
> bouncing. Who knew spam management could *almost* be fun?
>
> BTW, aplogies to all if I incorrectly changed the subject of this
> follow-up, but I felt it drifted considerably from the original thread.
>
> Mark
BTW, has anyone any particularly effective procmail recipes that address
well intentioned e-mail that's ultimately no different than spam? I'm
referring to things like chain letters, Irish blessings,
multi-generation forwards, etc.
Mark
--
e-mail: mrksmtka@newsguy.com
| |
| Paul Lutus 2002-11-27, 1:24 am |
| On Tue, 26 Nov 2002 22:24:27 +0000, Mark Smitka wrote:
> BTW, has anyone any particularly effective procmail recipes that address
> well intentioned e-mail that's ultimately no different than spam? I'm
> referring to things like chain letters, Irish blessings,
> multi-generation forwards, etc.
Yes, there's one really effective approach to dealing with this and all
e-mail issues -- don't give out your e-mail addfress in the first place,
and never let it be listed publicly.
As to filtering software, I live out in the country and I have a rather
slow Internet connection. It takes too long to download the junk, only to
filter 99% of it, so I never reveal my e-mail address except in an
occassional reply to my message board, and every six months, I change
e-mail addresses (because over time someone gets hold of my address
anyway, and foolishly posts it in one of those stupid multi-addressed
mailings that newbies are famous for).
Wasn't it Mark Twain who said, "Three people can keep a secret -- if two
of them are dead"?
--
Paul Lutus
www.arachnoid.com
| |
|
|
Paul Lutus wrote:
> As to filtering software, I live out in the country and I have a rather
> slow Internet connection. It takes too long to download the junk, only to
> filter 99% of it, so I never reveal my e-mail address except in an
I finally started using one of those free web based emails as a spam
catcher. I log into it every once in a while, and all that initially
gets downloaded is the message subject. Then I can do a select all, and
unselect the ones that look OK, then hit delete. Works pretty good.
- Kurt
| |
| +Chiron+ 2002-11-27, 4:24 am |
| -----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
On Tue, 26 Nov 2002 23:18:13 -0800, Paul Lutus tempted the fates in
alt.os.linux by proclaiming the following:
> On Tue, 26 Nov 2002 22:24:27 +0000, Mark Smitka wrote:
>
>> BTW, has anyone any particularly effective procmail recipes that address
>> well intentioned e-mail that's ultimately no different than spam? I'm
>> referring to things like chain letters, Irish blessings,
>> multi-generation forwards, etc.
>
> Yes, there's one really effective approach to dealing with this and all
> e-mail issues -- don't give out your e-mail addfress in the first place,
> and never let it be listed publicly.
I got news for ya Paul-
If you have an ISP account, your data has already been sold.
Now that we've established that your shiny new address is in the wild
*that* is where filtering, procmail & spamassassin (and their ilk) come
into play. Thus, the new twist to this thread.
Now, did you have some procmail filters to share with us or did you just
wanna grab the soapbox for a bit and babble some more? =)
- --
+Chiron+ ( A bird in the hand is worth two in the
GnuPG Pub Key 848D1A2D -o)) bush. -- Cervantes
Linux Kernel 2.4.20-rc4 /\\(
Slackware 8.1 *w00t* _\_v)
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.1 (GNU/Linux)
iD8DBQE95H7Je8wcrYSNGi0RAj/ 5AJkBpt0MjKO4fQdLphadOd9pHan4z
gCeJ3Y7
+ssEqDXHE7V+qr8Brknwo3E=
=txY5
-----END PGP SIGNATURE-----
| |
| +Chiron+ 2002-11-27, 2:24 pm |
| -----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
On Wed, 27 Nov 2002 08:28:23 GMT, Kurt tempted the fates in
alt.os.linux by proclaiming the following:
> I finally started using one of those free web based emails as a spam
> catcher.
I do the same thing(s) with a couple of hotmail & yahoo accounts that I
use solely for spam-bait & to help spam filtering/blacklist projects like:
Razor
http://razor.sf.net/
SpamAssassin
http://spamassassin.org/
mail-abuse.org
http://www.mail-abuse.org
SpamAssassin requires very little configuration; you do not need to
continually update it with details of your mail accounts, mailing list
memberships, etc. It accomplishes filtering without this knowledge, as much
as possible.
I download the messages directly to my local spool / procmail / SA setup with
the following projects:
Gotmail
http://ssl.usu.edu/paul/gotmail/
FetchYahoo
http://fetchyahoo.twizzler.org
So that they can filter through it all and report the spamming bastards to
the spam filters so that no-one else will get spammed from those companies.
Even if a message is super-sneaky and manages to "stealth" past my filters,
I've got a macro in mutt setup to report a message as spam to the spam
filters with a single keystroke.
In the end, I get almost zero spam, am contributing to open-source projects,
AND help others avoid getting spammed - all at the same time.
It doesn't get much better than that. =)
The process of setting all of this up was *very* simple (really - I don't
know shit about mail servers) and took all of 1/2 hour to accomplish.
I'm very happy with it. =)
- --
+Chiron+ ( It is necessary to have purpose. -- Alice
GnuPG Pub Key 848D1A2D -o)) #1, "I, Mudd", stardate 4513.3
Linux Kernel 2.4.20-rc4 /\\(
Slackware 8.1 *w00t* _\_v)
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.1 (GNU/Linux)
iD8DBQE95R2ee8wcrYSNGi0RAh2fAK
DFdJH6tfA7jKboVpF85Gw6xi1XogCg
rXcz
jst2OvZNOrurT1OWRC+NA2w=
=cKUc
-----END PGP SIGNATURE-----
| |
| Jeroen Geilman 2002-11-28, 4:24 pm |
| +Chiron+ wrote:
> I got news for ya Paul-
> If you have an ISP account, your data has already been sold.
What ? How do you figure that ?
I can guarantee you that my ISP has not sold nor will ever sell or
distribute my account information - ANY of my account information - to
anyone, ever - unless it's the proper authorities...
That's in shiny black and white letters - on my account contract.
But then, you probably live in the good ol' US of A, don't you ?
Or you use one of their ISPs, anyway...
J
|
|
|
|
|