-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1
Codger wrote: > > I was wondering about anyone's thoughts toward having a real > > autogreylist database as part of, but separate from, the autowhitelist > > in SA? Or even if you think this is all a bad thing to do in the first > > place. The appeal for me is that I can hold a tighter line for what is > > marked as spam but still make sure that our users get legitimate email. I do not yet see how this is a "autogreylist", but I do a very similar thing -- not on a user, but on a company-level: If someone * spells the company name correctly (it has spaces, whereas the domain has not) * spells the company name correctly in one of the "official languages" (the domain name is the english variant) * writes one something looking like one of our phone numbers (w/ some regex magic) * mentions one of the company street addresses * The footer appended on all outgoing mail (*sigh*) is detected on incoming messages (ie, it's a reply) the mail gets hefty bonus points. It's pretty easy to explain the first one (write the company name with the spaces) to the users, and it would take a yet-unseen degree of sophistication in spambots to come up with that. - -- Matthias - -- http://www.dnswl.org/ - Protect against false positives -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.2 (GNU/Linux) Comment: Using GnuPG with SUSE - http://enigmail.mozdev.org iD8DBQFFhQ9xxbHw2nyi/okRAhw2AJ9PoSUJhOq21xibMEHxnzOLwRYiuQCfS1V4 INTQbUNtytxY/yuNoR4hnF0= =wbn3 -----END PGP SIGNATURE-----
