Steven Dickenson wrote: > Matt Yackley wrote: >> 1. Email that has only been stored in user mailbox and then pulled >> from a mailbox via IMAP/POP3 will retain the full headers of the >> email. > > What happens if a user moves the mail item to another folder in their > mailbox, and is then extracted via imap? >
<snip> What I do here (Exchange 5.5 but I don't see why it wouldn't work with 2k): I created a user named Spam and a mailbox for this user on the exchange box. Logged in as that user, created two new folders called (what else?) Spam and Ham, opened Outlook and gave permissions to people trusted to move spam into those folders. So far I have only given permission to myself and my immediate supervisor. Logged off and back on as me. Under Services -> advanced in Outlook, added the Spam Mailbox to the list of additional mailboxes to open. This makes it show up in my folder list. When I get a spam through I drag it to the Spam Folder in the Spam Mailbox. (I try to put Hams in the Ham folder and learn against them as well but don't get near a 1:1 ratio not because they aren't there.. just laziness) Once I have 50-100 in there I manually run fetchmail on the Linux box to grab everything out of the Spam (or Ham) folders then run sa-learn against the resulting mbox. >From what I've seen the raw headers are not changed with the exception of the MailScanner spamassassin score which may be different because of RBL-SURBL's that have picked up on it. This doesn't appear to be a problem because sa-learn ignores the spam markup anyway. When I first implemented this I tried a Public folder but saw that the headers were hosed which is why I went to a regular user folder. This seems to work very well. I don't get more than 2-3 spams a day out of 150-200 hams and those are mostly due to spamassassin timing out or rebuilding. (my box is only a P233 and is processing 2k-5k emails a day so an occasional timeout is to be expected) I was going to script and automate the whole thing but I still like to see what's going on and since I check that machine (email filter gateway) every day it's not a problem to run it by hand. When I have a chance (fat chance :)) I'm going to write a wiki with more detail. Credit goes to Ray Gibson for the idea and a lot of detail to get it going. If anyone wants some nitty-gritty before I get a chance to do the wiki drop me a line. Kind regards, Ken Ken Goods Network Administrator AIA Insurance, Inc.
