On Tue, 2002-02-19 at 14:57, Charlie Watts wrote: > > but procmail can... > > (assuming there is a razor client somewhere) > > No, it can't. The procmail interfaces to DNS Blacklists are all call-out > programs ... it is possible to parse out the received headers and pass > those to a dns looker-upper, though. But then you lose the ability to have > one "score" that you are working towards. I think it makes more sense to > keep DNS tests in spamassassin.
...and not only that, but if you're running lots of scripts out of your procmail recipe, you're going to be putting an even heavier load on your filtering machine, by continuously forking off all those DNS lookup processes. You probably *could* cobble together some fancy procmail recipe which did the scoring stuff that SpamAssassin does, but you'd have to have a PhD in procmail recipes, and it'd be a lot less efficient than the way SA does it now. > > > is critical, and I run spamd -L anyway. > > Have you tried using just bl.spamcop.net? I use that and > blacklist.spambag.org. You can secondary blacklist.spambag.org for better > speed, too. I find the spamcop list to be the best one around, by far. Useful to know -- I generally don't find I need the DNS lookups though -- I'll try turning these on for a while though and anecdoctally assess whether it's worth it. > I'm not really sure how useful the MX tests are. I'm captivated by them, > but I don't see much getting hit by them ... > > And I'm actually playing with Razor again. It isn't nearly as broken as it > was for a while. But I've got some spare CPU cycles to throw at Razor > right now. Razor probably wouldn't be worth re-implementing in a C > re-write, but the Rhyolite.com DCC system might be. Let us know Charlie -- sounds like you're like me in somewhat mistrusting Razor since it used to be pretty flakey. If it is now working better, that's be good to know. Also, I'd be very interested in some objective assessment of the merits of DCC -- I've been meaning to take another look at it -- last time I checked it was in a fairly rudimentary state of usefulness. By the way, I just got a bug report that razor calculation is broken in SA somehow -- it's apparently calculating the wrong signature for emails or something -- check bugzilla #42 for more info. > > me too. anyway, i have another idea, "developed" some time ago for virus > > checking. the main point is checking mails for databases > > (razor/virusscanner) at time of _downlaoding_ mail (pop3), instead of > > when it arrives. (when it arrives (especially true for viruses) it's > > mostly unknown by databases, but few hours/days later when teh user > > downloads it it's already listed in the database and can be cought. > > anyway it has many limitations at pop3 side, and needs special pop3 > > daemon (which at first time of mail checking checks and move new mails > > to a new folder where the user can download from). > > This would be pretty easy. Don't change your pop3 daemon, just write a > wrapper/proxy for it. > > At first glance I think IMAP would be a bit harder. I was looking at implementing call-out-to-SA at IMAP read time a while back. I actually wanted to make it a transparent IMAP proxy in a hardware device. It didn't look technically impossible at the time, but I dropped the idea when a more lucrative opportunity arose. Basically it was going to be something which could sit between you and your upstream internet connection, silently but intelligently redirecting traffic on port 143 to a server which would itself open a backend connection to the real IMAP server, then run everything through SA as it passed over the wire. Latency issues would be the biggest problem here, since if the user clicks on a header in their MUA they expect that message to appear stat, not have to hang around waiting for razor-check to timeout or whatever. By the way, nobody go patenting this just because I'm not actually working on it any more -- I have prior art ;) C _______________________________________________ Spamassassin-talk mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/spamassassin-talk
