Hello Mike,. MV> Q1. MV> Does a configuration exist (mailscanner, or such utilities) that would allow MV> one to do a standard reject based on the hit score? Based on my existing MV> setup, by the time the message goes through SA via spamc, it is already out of MV> postfix. I assume that means that a standard smtp type of reject could not be MV> done? Does anyone have a setup to reject rather than dev/null and, if so, how?
I don't think so, because the reject is something that must be done based on utilities within the mail program. Sendmail can be configured to do RBL checks and reject email on that basis, as well as to reject based on sender (by IP or domain name) in an access database. A program could probably be written to write IPs to the Sendmail access database, and therefore reject them, based on history and past SA scores - so basically subsequent attempts by the same spammer would be rejected. Standard RBL checking is probably easier and more effective, though. MV> Q2. MV> The downside to this is that it would add bounce messages to the flow of MV> things and spammy often does not have valid return addresses. The upside is MV> that if I dev/null and it was a valid message, the sender never knows the MV> message was lost. If a reject is sent back, then the user could contact the MV> recipient via some other means. Hence, would the reject, even if it could be MV> done, be a good idea (my idea was to reject as a non-existent user). Yes, this can be done via procmail and an autoresponder. It would not be a true "reject", but rather an email notification that the email was rejected and a statement of the reasons; it could also refer to a page with a form or a postmaster or abuse address where the sender could try to retransmit and request whitelisting. Here's an example of what such a set up might look like - you would have a post-Spamassassin procmail recipe like this: :0 * X-Spam-Level: \*\*\*\*\*\*\*\*\*\* :0 c ! [EMAIL PROTECTED] :0 /dev/null (You could also adopt this to specific types of spam; for example, you could use the recipe: :0H *X-Spam-Status: Yes *__NIGERIAN_BODY_ together with an autoresponder to send an automated response indicating an avid interest in providing international banking services, specifying a reply-to email address that is aliased directly to [EMAIL PROTECTED] As you noted, most of the autoreply responses will probably bounce, but you should be able to hook a few Nigerians. ;-) -Abigail ------------------------------------------------------- This SF.Net email sponsored by: Free pre-built ASP.NET sites including Data Reports, E-commerce, Portals, and Forums are available now. Download today and enter to win an XBOX or Visual Studio .NET. http://aspnet.click-url.com/go/psa00100006ave/direct;at.asp_061203_01/01 _______________________________________________ Spamassassin-talk mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/spamassassin-talk
