Those sound like perfectly legitimate emails so working to classify them as decent emails would be our goal. Was there anything malicious snuck in there?
We are using extract text and have been making improvements to it. False positives especially with the beneficiary and financial rules is something to be noted and worked on as well. HTH, KAM On Mon, Jun 27, 2022, 16:50 Alex <mysqlstud...@gmail.com> wrote: > Hi, > I'm looking for input from people on how they handle attachments, and > people using email as a file transfer service. One of our users must have > posted to a job site recently, soliciting resumes from people > internationally. This resulted in 100+ emails from random people who had > never emailed this user before, many of which had no subject and no body, > just a PDF attachment. Some had the "Sent by my iPhone" signatures, but > that's about it. Virtually all of them were tagged as spam due to bayes. > > Any recommendations? There wasn't otherwise anything wrong with the > attachments - they were all legitimate resumes from legitimate sources. > Should they be blocked? Should I retrain bayes to not consider these spam? > I'm now training bayes with them as ham, but it will take a lot to > offset these. Same with emails that only contain images. Should an email > with only an image attachment with no subject and no body but sent from a > legitimate source and otherwise not dangerous be considered spam? > > Many also hit DCC, presumably because of the empty body. Is it possible to > train DCC with one of these to be ignored that would then apply to all > similar messages? I've generated a signature of an empty email before, but > unsure how much variation is allowed before it's no longer considered the > same signature. > > Somewhat related, is the ExtractText plugin useful anymore? I had to > disable it altogether because of the money rules and people emailing their > credit card statements, and even though they talk about money, it's not > malicious. > > >
