Marc Perkel wrote:
Just wondering about what people are using to detect if email is
coming from a mail list discussion server like yahoo or google groups.
Does anyone have good discussion list detection rules?
I'm not sure about doing this from within spamassassin, but using
postfix, I have a whitelist that will avoid calling spamassassin for
anything that matches. I match entries primarily using the envelope
rules. I've manually added entries primarily for the high traffic
mailing lists that I've noticed on my server. Since I run other tests
on my mailserver to disallow bogus senders, it's pretty foolproof.
If Sender matches:
51 accept regex:.*\.ubuntu\.com
51 accept regex:....@postfix\.org
51 accept regex:....@centos\.org
51 accept regex:.*\.fedoraproject\.org
51 accept regex:....@returns\.groups\.yahoo\.com
51 accept regex:....@spamassassin\.apache\.org
I would also think there would be some good header tests, such as having
a list-id header, but the problem here is that if this became used
universally, spammers could easily add false headers. You could also
look for signs that the message came through one of the major mailing
lists managers such as mailman, ezmlm, majordomo etc., and also include
yahoogroups, google etc in these tests.
if your MTA already makes the enveloperules available for testing and
you can avoid passing the messages to spamassassin, you'll cut down
significantly on resource usage. I have NOT had any problems with spam
passing through my simple setup.
Nataraj
