On Thu, 2007-08-16 at 17:47 -0500, René Berber wrote: > Jari Fredriksson wrote: > > > Botnet is bad AFAIK bad for anyone running an ISP or so. > > > > I'm a lone one and I know that nobody sending me email is not using a Linux > > box with his own server, so I can drop all mail from dynamic dns or no rdns > > at all. > > > > I do whitelist all mailling lists as well, they never see SA. > > > > In my position, Botnet is good. But if I were an ISP I could not use it. > > Impossible. Totally impossible. > > You never tried, nor need to, and say it is impossible? Not true (have you > heard of the trusted_networks setting), it is possible and any ISP who uses SA > would gain by using it. > > The work Botnet does is similar to graylists, a good one stops suspicious mail > servers for a while, if they insist they'll pass the graylist and get scored > by > Botnet, how much you score them is your choice.
Well, like I said, we had big problems using anything in Botnet except nordns. Does anyone have a good words list I could try? I have set BOTNET_CLIENT to 1.0 and that seems to start killing these messages. I also have everything else set to 0 except BOTNET_NORDNS at 4.5. Does all the other settings being zero effect my BOTNET_CLIENT scores or will it continue to calculate the BOTNET_CLIENTWORDS, etc, as part of BOTNET_CLIENT? -- Robert
